Cybersecurity

NIST tweaks advice on passwords, says make them easier to remember

Theyre difficult to memorize so employees skirt hospital IT rules when conjuring them up anyway, group says.The National Institute of Standards and Technology on Wednesday published new guidance on how to strengthen passwords. Why now? Research shows that the de facto standard practice of requiring users to include a mix of uppercase and lowercase letters,

[ Read More ]

Poll: NIST advises simpler passwords, but will your hospital update its policies?

Take our poll and well report back on what other hospital IT shops are planning to do.In new draft guidance, the National Institutes of Standards and Technology urged healthcare and other IT shops to ease common password requirements.Instead of mandating that log-in credentials consist of numbers and symbols in addition to letters, NIST said phrases

[ Read More ]

Improving the Cybersecurity of IoT, Medical Devices

The Department of Veterans Affairs and the U.S. Defense Advanced Research Projects Agency are working closely with safety certification and consulting firm UL to improve the cybersecurity of internet of things devices as well as medical devices procured by the government. The effort could yield benefits to the private sector as well, two researchers explain

[ Read More ]

Healthcare Leaders Must Prepare for the Worst When It Comes to Cybersecurity

Technology prepares provider organizations to protect patients and staff from growing threats.Hope for the best outcome, but prepare for the worst.The advice is simple, but clearly applicable to healthcare, particularly in the wake of ongoing cyberattacks.Each day, providers strive to care for patients who walk through their doors and to keep them safe and secure.

[ Read More ]

Anthem Breach Lesson: Why Granular Access Control Matters

Healthcare organizations can learn important lessons from the proposed $115 million settlement in the breach lawsuit against health insurer Anthem, says Bill Fox, a former federal prosecutor.One of the key lessons emerging from the Anthem breach case, which impacted nearly 79 million individuals, is the need for more granular control of access to sensitive data,

[ Read More ]

There are 6 cybersecurity knowledge areas every infosec pro must master, NIST says

Cyber ops planner. As a professional title that sounds like either a shadowy special agent or some new age name for a nefarious hacker.Instead, it is one of the job roles that the National Institute of Standards and Technology outlined in its just-finalized draft Cybersecurity Education (NICE) Cybersecurity Workforce Framework.Infosec pros already know what a

[ Read More ]