November 4, 2020

81% of Americans Highly Confident Connected Devices Secure Despite Overlooking Basic Security Hygiene

24x7 Magazine, November 4, 2020
The National Cyber Security Alliance (NCSA), the Nation’s leading nonprofit, public-private partnership promoting cybersecurity and privacy education and awareness, released a new survey report detailing how consumers protect themselves and their data when using connected devices. NCSA’s study, compiled as part of Cybersecurity Awareness Month, surveyed 1,000 U.S. respondents in two age groups (500 ages 18-34; 500 ages 50-75) about perception and behavior around connected device security. The study was conducted from September 9, 2020 to September 16, 2020. Below are the key findings.

November 4, 2020

NCSA: Confidence in security of connected devices often misplaced

Healthcare IT News, November 4, 2020
The National Cyber Security Alliance recently took a closer look at how consumers in different age groups protect their own data – or don't – when using mobile devices. The poll found different attitudes across the spectrum, but generally found that consumers of all ages need to pay closer attention to how they manage connected health and other tools.

November 4, 2020

Politico Pro Morning Cybersecurity

Politico, November 4, 2020
Even though an overwhelming majority of consumers are confident their connected devices are secure, most don’t perform basic hygiene, according to a National Cyber Security Alliance survey . A poll of 500 respondents, ages 18 to 34, found that 81 percent believe they’re protected; however, 54 percent connect to unprotected Wi-Fi networks to access things like email and online banking. Half never turn off manufacturer features for location tracking and data sharing, and 44 percent always accepts push notifications from apps, the survey found.
Meanwhile, 77 percent of consumers, ages 50 to 75, are confident about their personal security and are more risk-averse than their young counterparts, according to the poll. But more than a third of older consumers, 36 percent, rarely or never check for software updates. Forty-two percent said they never used public Wi-Fi for personal needs and 68 percent will only download apps from trusted sources.

November 3, 2020

U.S. Health Care Under Attack

Security Boulevard, November 3, 2020
The U.S. Cybersecurity and Infrastructure Security Agency (CISA), with the Federal Bureau of Investigation (FBI) and the Department of Health and Human Services (DHS), have issued a cybersecurity advisory to the U.S. healthcare sector (Alert: AA20-302A) regarding a concerted effort to compromise and take hostage the computer systems of healthcare providers.
The cybercriminals are targeting the sector with “Trickbot Malware” with the intent of creating a ransomware situation. If successful, their efforts to encrypt the systems and demand a Bitcoin ransom will disrupt the affected healthcare entity.

November 3, 2020

Five minutes in healthcare – featuring Kelvin Coleman

DOTmed Healthcare Business News, November 3, 2020
In this installment, I check in with Kelvin Coleman, executive director of the National Cyber Security Alliance (NCSA), about the evolving dynamics of cybersecurity and some simple ways that healthcare providers and patients can protect their information.

October 30, 2020

Ransomware versus patient medical data. Patching and updating. A new loader in town.

CyberWire, October 30, 2020
With a global pandemic underway, the last thing we need is a threat to healthcare systems. And indeed, as the CyberWire reported recently, some threat actors have made unofficial statements promising to leave medical data and systems unharmed. But the findings of three US federal agencies paint a different picture. Voice of America reports that the Cybersecurity and Infrastructure Security Agency, the Federal Bureau of Investigation, and the Department of Health and Human Services released a joint statement predicting that healthcare institutions face an increased threat of “data theft and disruption of healthcare services." Alex Holden, CEO of infosec firm Hold Security, informed government officials that ransomware attackers are prepping campaigns against more than four hundred healthcare institutions with ransoms upward of $10 million.