Off to a roaring start for 2020
Only a few days into the new year and alerts started going out to prepare for increased cybercriminal activity in all critical sectors, including healthcare and financial sectors. Like it or not, we’re at cyberwar with Iran. That actually shouldn’t surprise anyone. We’ve been under a steady stream of targeted cyberattacks from Iran (and others) for years. While the threat may not be targeted towards smaller private sector companies, there are steps you can take to improve your level of awareness and preparedness. Here are four recommendations:
- Ensure all of your devices are updated to their newest firmware and software programs and that they are set to run updates automatically, particularly for smaller organizations.
- Be current with your antivirus and antimalware products. Cloud-based options are becoming increasingly appealing given their more rapid reaction times.
- Review your firewall access settings and confirm they are set to allow the minimum permissions necessary to run your organization smoothly.
- Start reviewing your firewall and server access logs on a regular basis. This will help make you aware of what is happening on your network and perimeter.
If you have questions on accomplishing anything above, give us a call.
New ransomware Maze takes the stage and delivers
Maze is the latest version of ransomware rummaging through our nation’s organizations. What makes this strain particularly nasty is that it delivers on the promise to release your data. This approach is helping to make Maze extremely effective (and lucrative). The standard defenses apply, but ask us for a solution that is stopping ransomware before it attacks you.
Data Privacy Legislation
Data privacy laws stumble into effect in numerous states in January. I say stumbled because rather than a national standard, each state is creating their own versions. Most of them are based on the California legislation known as the California Consumer Privacy Act (CCPA), but they vary by state, and companies who do business nationally or across borders need to be aware of new responsibilities. If you have 50 or more employees or deal in personal data, you’re likely directly impacted. Here again, we can help. Let us know if you have questions about complying with the new requirements.
You may want to be sure to write the entire date, 2020, instead of just 20 when putting the year on documents. Contracts, for example, could easily be manipulated if the number isn’t complete.
Wishing all a prosperous 2020! Thank you for reading and we will do our best to keep you aware and secure in the new year.
If you have any questions or if you are concerned about your organization’s cybersecurity, give us a call at (800) 970-0402. We’ll be happy to help.
For more HIPAA information, download our ebook – The Ultimate HIPAA Compliance Handbook.
The HIPAA Security Rule requires the implementation of a security awareness and training program for all members of its workforce (including management). Have your team sign up for weekly HIPAA Security Reminder to help stay compliant.