A March 2017 GAO highlights flaws with credit monitoring services.
Credit monitoring services do not address these cyberthreats:
- medical identity
- tax refund fraud
Monthly Archives: March 2017
Lege Trend. Procurement Trend. Expanded IT bidders.
State: Ohio
IT Procurement Issue: How to get innovative tech firms to bid on IT contracts, especially for data analytics.
The procurement change: Remove the old school, clunky procurement process
The procurement fix:
- streamline the procurement process by creating a request for proposal that prequalifies companies to provide analytics according to a range of disciplines, such as fraud, auditing, risk management, public safety…
- remove the requirement that a vendor has to have worked for a…
Legal Trend. New FBI Guidelines. Healthcare. Cybersecurity.
What guidance is the FBI giving medical and dental providers on cybersecurity? That file transfer protocols, FTP, transfers csn be accessed by anonymous users without passwords. Cyber secuity measures should be taken to correct server settings.
What speficially did the FBI say about protected health information (PHI) pr personally identifiable information (PII) ? PHI & PII should not be kept on FTP servers allowing for anonymous operation
Lege Trend. What are businesses saying about turning over data to governments?
No, thank you. Or, thank you, but no.
Microsoft has taken the stand that the only way it will turn over data to the government is if Microsoft is legally compelled to do so.
What is Microsoft saying? Sue me or more politically correct, “”We will not help any government, including our own, hack or attack any customer anywhere,””
SC Media | Microsoft president takes stand against turning over data
TREND. Business & Cybersecurity. 3 Cyber Issues. US Chamber of Commerce.
The U.S. Chamber of Commerce is making cyber security recommendations for regulators and policy makers, including:
- agency leadership needs to work with business to “harmonize cyber regulations”
- modernize government IT structure
- clarify the roles and responsibilities of the public and private sectors when it comes to cybersecurity
The Hill | Chamber of Commerce urges Trump to get business input for cyber strategy
Business Trend. Health Care Data Encryption and the Denton Health Group Breach
The data breach: Denton Health Group had thieves steal 7 years of patient data
The cyber theft: The thieves stole physical hard drives which were not encrypted
Encryption & health care:
- 65% of health care providers encrypt in the cloud
Lege Trend. Cybersecurity Training for Law Enforcement
The Legislation: Strengthening State and Local Cyber Crime Fighting Act of 2017
What does the bill do? Allows the National Computer Forensics Institute to train law enforcement to combat cyberthreats
Will training be available for state and local law enforcment? yes
Rep. Ratcliffe introduces bill to provide cybersecurity training to local law enforcement
3 Reasons Data Security is Key to Manufacturing Economy
- Manufacturing is the 2nd most hacked industry, behind health care
- Cybersecurity risks include:
- operational downtime
- physical damage
- product manipulation
- theft of intellectual property and sensitive data
- Cybersecurity in manufacturing isn’t an IT issue, its a business issue
Global Manufacturing | The importance of data security in manufacturing
New Rulemaking: Connected Cars
The Agencies: FTC and NHTSA
The goal of rulemaking: fight cybersecurity and privacy threats from vehicles with systems that connect to the internet
Lege Trend: Manufacturer Disclosures for Hackable Consumer Goods
State: California
The legislation:
- require manufacturers to secure the cyberprotections of consumer goods sold in the state
- require consumer consent before the device stores consumer data
Sacramento Bee | Are your household items spying on you? One California lawmaker has an answer