Wednesday, March 29, 2023

2023 REPORT MEDICAL DATA BREACHES & CYBERCRIME


Updated 3/29/2023

INTRODUCTION:
Global news and federal agencies consider cyber-attacks the next global PANDEMIC- the kind that shuts down government infrastructures, banks, institutions and medical centers.  For medical offices, these cyber-criminals pretty much shut down your entire practice rendering victims completely helpless as they extort large sums of money in exchange for releasing your data and your operating system.  Non-payment of the ransom often means the ultimate threat of exposing your patients private data throughout the media and the dark web. Cyber-attacks growing rampant each year- with statistics recorded to be as frequent as every 11 seconds! Trying to catch these attackers continues to be a major challenge and this ruthless crime continue to grow.  Now- whether it's a cyber-attack or an infectious disease, the best ways to fight away any attack are the same... EDUCATION AND PREVENTION!

 


RANSOMWARE 101 (Part 1): By Adam Karp (Technology Review)

Generally speaking, when a ransomware attack occurs, the bad guys have typically infiltrated the target network six to nine months prior to the attack. In that time period, they're often exfiltrating data. They're working on spreading throughout your network and deleting backups if possible before they ultimately encrypt all of your data. As far as the ransomware payload, while they're asking for a ransom to give you your data back, it's common for them to already have a copy of your data and then extort you. If you think that you're going to be able to restore from a backup, they will then extort and threaten you that they will disseminate all of your client information on the dark web if you don't comply.

The other component to be very aware of is that often, because the bad guys have been in there for six to nine months prior, they're already embedded in your backups.  So if you think that you're going to be able to restore from a backup from last week before the actual ransomware payload was delivered, the the cyber criminals may already have a back door in your existing backups.

Next, if you managed to get past the payout and you finished your data restore process a week or so later, it's very common for them to just re-encrypt you all over again. It's like deja-vu and a bad nightmare. But it happens. So in order to make sure that the bad guys are actually gone from the network prior to that, there's a lot of work that needs to be done.



Click to enlarge or print
PREVENTION vs RECOVERY
In all cases, prevention is a lot more cost effective than remediation. But given the situation, remediation may be our only option so oftentimes, what happens next is that the insurance company will bring in their team of experts to do their own forensic analysis at the same time as when your IT company is trying to restore you. There are several conflicting motivations here that you should be aware of.  It is common for business owners and I.T. to try to get you back up and running as quickly as possible. The insurance company will have a different perspective. They're more inclined to focus on data preservation and understanding of the forensics of how the infiltrators actually got in.  Primarily, getting this information is key to confirming if they’re completely gone, or that they won't come right back five days (or so) later.

"DON'T LET YOUR GUARD DOWN": THE CURRENT CULTURE IN PROTECTIVISM OF OUR DATA: Ransomware prevention and recovery calls for more than just one layer of protection. There's not one silver bullet that you can utilize to protect yourselves. It's a comprehensive and a layered approach to security. It is critical to combine security awareness training for your business and your end users because 9 out of 10 times, the infiltrators are led in the front door by an employee who accidentally clicked a link that was malicious. And with some basic training, you can minimize those types of risks by up to 95% which is significant. These types of phishing campaigns are increasingly sophisticated and they're always coming up with new methods. Hence, having ongoing security awareness training is crucial to protecting your organization.






"ZERO DAY" GOOGLE VULNERABILITY & THE GLOBAL COMPLACENCY


"EVERYONE ELSE BUT ME"

The Covid-19 pandemic was a hot time to get attacked! Reports showed a spike of over 30% in attacks to businesses and personal systems [7]. Admittedly, until a few years ago, I was part of this global elite (which translates to complacent and lazy) who counted on the sheer luck and hopes of having enough internet security, ignoring headlines of current cyber threats to many off my own Apps. I never updated my malwarebytes, ignored popups about updating browsers and haphazardly opened unknown eamils.  My last virus attack was back in 2015-- leading me to think "so why should I get one now?"  But after 6 of my friends and clients have actually been victimized by cybercrimes during the pandemic, I witnessed firsthand the true terror and destruction that this inflicts on one's actual LIFE.  This made it all REAL for me! The last thing I would ever do again is ignore such warnings - especially from Google themselves.


Google’s Threat Analysis Group (TAG) tracks actors involved in information operations (IO), government backed attacks and financially motivated abuse. For years, TAG has been tracking the activities of commercial spyware vendors to protect users. [1] Today's headlines about GOOGLE CHROME being compromised made me stop in my tracks to step up and "FIX" my browsers myself. Where most business owners will push this off to their I.T. people, my tech consultants offer me sage advice to be more HANDS-ON with the essentials - simple stuff like BLOCKING unknown emails and UPDATING your browsers. 

[SEE COMPLETE FEATURE]


Disclaimer: The information in this article and video insert is part of a public service by the publishers of this newsletter and the Professional Alliance of Medical Data Protection.  It is not a commercial endorsement for any products, services or technologies. Please check with your I.T. consultant or advisor for all matters concerning internet security and data protection. Our publishers take no responsibility for the current or future state of your network security.



IN-OFFICE BIOHACKING: 
Another common advantage to this energy therapy is managing ANXIETY within the younger generation. I've seen a lot of teenagers in my office recently for just anxiety purposes, which I think has been amplified during this recent era. To introduce the BrainTap device while on an infrared bed, or sitting in ONDAMED® session has opened up that possibility that they can be able to manage their anxiety, which is sometimes not easy to do with a counselor or a psychologist. The use of BrainTap has been extremely beneficial for the young population. There are numerous ways to incorporate different methods of biohacking your mind and body into your daily routine. (See complete article)





By: Roberta Kline, MD
Analyzing STRESS & ANXIETY from a holistic point of view means identifying the body’s interconnected systems (ie. circulatory, cardiovascular, nervous, lymphatic, endocrine etc.) and its many touch points for stimulation.   This analysis should also offer a comprehensive breakdown of the body's HEALING capacity- which includes our hormones, digestive system, immune system, brain, heart-- all the way down to our cells and mitochondria.  Stress is part of life, and comes in many forms including physical, emotional, mental and environmental. Foods we eat, unhealthy relationships, difficulties at work, toxins in our environment, even poor posture or lack of sunshine can all create stress on our bodies. But when stress is catastrophic or becomes chronic, it creates imbalances in this functioning that are much more likely to promote disease while at the same time preventing healing from taking place.


Wednesday, December 7, 2022
NEUROPLASTICITY: 8 Reasons We All Need to Learn About Brain HealthThe word Neuroplasticity ignites a feeling of hope. For clinicians and therapists working with patients with all types of brain injuries, understanding neuroplasticity is crucial. Because neuroplasticity is the brain’s ability to change and adapt in response to new learning and new experiences, it can change both a clinician's choice of therapeutic techniques as well as the duration of the patient’s therapeutic program.  We now know that, even in the absence of brain injury or illness, teaching people how to help their brain to more easily adapt, change and grow as we age is the key to maintaining cognitive health. That’s how we remain sharp and resilient into our advanced years, but there’s more to it than that.  The answers to the following seven questions will help us to better understand why brain health education is so very important to all of us. 
 


Copyright Notice: The materials provided on this newsletter "360 Health Alert" are copyrighted and the intellectual property of the publishers/producers (The NY Cancer Resource Alliance/IntermediaWorx inc. and The AngioFoundation). It is provided publicly strictly for informational purposes within non-commercial use and not for purposes of resale, distribution, public display or performance. Unless otherwise indicated on this web based page, sharing, re-posting, re-publishing of this work is strictly prohibited without due permission from the publishers.  Also, certain content may be licensed from third-parties. The licenses for some of this Content may contain additional terms. When such Content licenses contain additional terms, we will make these terms available to you on those pages (which his incorporated herein by reference).The publishers/producers of this site and its contents such as videos, graphics, text, and other materials published are not intended to be a substitute for professional medical advice, diagnosis, or treatment. For any questions you may have regarding a medical condition, please always seek the advice of your physician or a qualified health provider. Do not postpone or disregard any professional medical advice over something you may have seen or read on this website. If you think you may have a medical emergency, call your doctor or 9-1-1 immediately.  This website does not support, endorse or recommend any specific products, tests, physicians, procedures, treatment opinions or other information that may be mentioned on this site. Referencing any content or information seen or published in this website or shared by other visitors of this website is solely at your own risk. The publishers/producers of this Internet web site reserves the right, at its sole discretion, to modify, disable access to, or discontinue, temporarily or permanently, all or any part of this Internet web site or any information contained thereon without liability or notice to you.

No comments:

Post a Comment

Breast Cancer Incidence on Long Island: Environmental Impact

 A report by: Dr. Noelle Cutter (Molloy University) and Ben Honigsfeld Breast cancer is a current health concern, affecting millions of wome...