Modern technologies are certainly making it easier for an organization to minimize risk and detect and prevent security breaches when they occur. Between intrusion detection systems, next generation firewall systems, threat management solutions, data encryption solutions, there are a lot of ways to help your organization. However, the basics of security are just as important. If you look at the HIPAA data breach portal, you’ll find a pile of examples of breaches caused by simple errors and security mistakes.

While the FTC doesn’t cover enforcement of HIPAA-covered entities, their latest blog post for business is a must read for your business, no matter if you’re HIPAA-regulated or not. Start with Security: A Guide for Business covers the following aspects of data security in an easy-to-follow format:

1. Start with security.
2. Control access to data sensibly.
3. Require secure passwords and authentication.
4. Store sensitive personal information securely and protect it during transmission.
5. Segment your network and monitor who’s trying to get in and out.
6. Secure remote access to your network.
7. Apply sound security practices when developing new products.
8. Make sure your service providers implement reasonable security measures.
9. Put procedures in place to keep your security current and address vulnerabilities that may arise.
10. Secure paper, physical media, and devices.

While this is an especially important issue to regulated industries, the advice is good for any business to follow.

In any business, keeping operational when you’re supposed to be is always the goal. But what if something happens to keep you from functioning properly? This is especially important in healthcare where timely access to critical health information can literally mean life or death. Is your IT infrastructure ready for worst-case scenario? Do you have a business continuity plan in-place?

Adobe is planning on ending support for Flash by 2020. While this has been a long-time coming, Adobe finally has made it official. Many web sites and browsers have begun shifting away from Flash for years now (Chrome disabled is by default quite a while ago). It’s being phased out because of a history of compatibility, performance, and security issues.

The problem? Many older online tools and web sites still use this Flash technology. If you need to use Flash and want to enable it on a case-by-case basis, here’s how to do it.

The National Institute of Standards and Technology (NIST) has updated its Digital Identity Guidelines (see NIST Special Publication 800-63B). The guide includes a variety of recommendations that can (and many times should) be implemented to improve the security on your network.

One of the things that this update covers is two-factor authentication, which we went over recently. We recommend using it whenever reasonably possible.

They suggest a minimum of 8 characters in your passwords, but they encourage much longer passwords of 64 characters (within reason) and that use of UNICODE, special characters, and spaces should be allowed in passwords. While spaces doesn’t necessarily add to password complexity, it does help folks begin using passphrases instead of passwords (there is a difference). Passphrases in general are much harder to break with brute-force automated techniques, but are easier to remember by users.

Long story short, make sure your password policies are kept up-to-date and that they are secure. Contact us for more information on running a network assessment on your environment to see how your policy is setup (among many other items that we look for). 

Weston's offices will be closed on Monday, September 4th, 2017, for the Labor Day holiday.

Emergency support for network down work stoppages is available for our CompleteCare clients by calling your local Weston office and following the telephone prompts to contact the after-hours consultant (emergency/holiday rates may apply):

• Bend: (541) 383-2340
• Anchorage: (907) 375-8324
• Spokane: (509) 228-7718

Weston wishes all of you a safe, enjoyable, and memorable Labor Day Weekend!