DOCSLIB.ORG

Cyber Defense Emagazine for February 2021

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Cyber Defense Emagazine for February 2021 Key Business Lessons Learned from The SolarWinds Hack Data Loss Prevention in Turbulent Times A Digital Journey: A Long and Winding Road Why Ensuring Cyber Resilience Has Never Been More Critical or More Challenging Than It Is Today …and much more… Cyber Defense eMagazine – June 2021 Edition 1 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide. CONTENTS Welcome to CDM’s June 2021 Issue ------------------------------------------------------------------------------------------------ 6 Key Business Lessons Learned from The SolarWinds Hack ---------------------------------------------------------32 By, George Waller, CEO of Strikeforce Technologies Data Loss Prevention in Turbulent Times -------------------------------------------------------------------------------35 By Otavio Freire, CTO & Co-Founder at SafeGuard Cyber A Digital Journey: A Long and Winding Road --------------------------------------------------------------------------39 By David Jemmett, CEO and Founder, Cerberus Sentinel Why Ensuring Cyber Resilience Has Never Been More Critical or More Challenging Than It Is Today -43 By Don Boxley, Co-founder and CEO, DH2i Uncovering hidden cybersecurity risks -----------------------------------------------------------------------------------46 By Adam Nichols, Principal of Software Security at GRIMM The Solution to Overcoming Cyber Threats in A 5g World ---------------------------------------------------------50 By Michael Abad-Santos, Senior Vice President of Business Development and Strategy, BridgeComm How An Independent Management Plane Can Secure Your Network from Anywhere --------------------53 By Todd Rychecky, Vice President of Americas, Opengear Exploring the Synergies Between HIPAA Compliance and Cybersecurity --------------------------------------56 Dr. Rachael Bailey, Healthcare IT Content Consultant at Atlantic.Net Whom Do You Give Access to Community? ----------------------------------------------------------------------------59 By Milica D. Djekic Reapproaching Cybersecurity in A Digital First World --------------------------------------------------------------61 By Paul German, CEO, Certes Networks Penetration Testing 101: A Key to Safeguarding Clients’ Data ---------------------------------------------------64 By Mike Urbanovich ― Head of test automation and performance testing labs at a1qa Establishing Your ICS (Industrial Control Systems) Security Action Plan – Getting Started Guide -------68 By Dirk Schrader, Global Vice President of Security Research, New Net Technologies (NNT) Improving Your Organization's Password Hygiene this World Password Day - Industry Experts -------72 By Ralph Pasani, president, Exabeam Cyber Defense eMagazine – June 2021 Edition 2 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide. Clean Water Shows Us Why Cyber Certifications Matter -----------------------------------------------------------79 By Yaron Rosen, co-founder and president, Toka How Can You Protect the Security Perimeter When the Threat is Already Inside? --------------------------81 By Jon Ford, Managing Director, Mandiant Professional Services Why We Care About Cybersecurity Hygiene ---------------------------------------------------------------------------85 By James Opiyo, Senior Consultant Security Strategy, Kinetic By Windstream The Third-Party Remote Access Security Crisis ------------------------------------------------------------------------87 By Joe Devine, CEO, SecureLink Rethinking Remote Monitoring and Management: How MSPs Can Put Security First and Better Protect Their Clients ----------------------------------------------------------------------------------------------------------90 By Ryan Heidorn, Managing Partner, Steel Root See What Hackers See via the Outside-In Perspective --------------------------------------------------------------96 By Alex Heid, Chief Research & Development Officer, SecurityScorecard Threat Hunting: Taking Action to Protect Data -----------------------------------------------------------------------99 By Paul German, CEO, Certes Networks What Does a CSO Do and How it’s Different to CISO? ------------------------------------------------------------- 102 By Anurag Gurtu, CPO, StrikeReady Two Sides of the Same Coin: Providing Access While Protecting Against Threats ------------------------- 105 By David McNeely, chief technology officer, ThycoticCentrify DDoS Defense: How to Protect Yourself in 2021 -------------------------------------------------------------------- 108 By Dr. James Stanger, Chief Technology Evangelist, CompTIA Prioritizing Disinformation Campaigns’ Role in Cyber Warfare ------------------------------------------------ 112 By Dan Brahmy, CEO of Cyabra Cyber Defense eMagazine – June 2021 Edition 3 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide. @MILIEFSKY From the Publisher… New CyberDefenseMagazine.com website, plus updates at CyberDefenseTV.com & CyberDefenseRadio.com Dear Friends, Building on the foundation of the May issue and the RSA Special Edition of Cyber Defense Magazine, we are seeing focus in the cybersecurity industry move toward resilience and sustainability in the face of the trend of more ransomware exploits. This is true not only for the prevention segment of the cyber spectrum, but also in sharing information about appropriate responses to the growing number of these attacks. In these cases, the target organization is denied access to vital data, effectively bringing normal operations to a halt. Where the activities of the target organization include provision of services and products on which critical infrastructure elements rely, the ability to recover from such an attack takes on the urgency of national security. The crossroads at which we now find ourselves is where cybersecurity and supply chain management intersect. The practice of “just in time” delivery without maintaining inventory of critical components must be addressed, not only from a manufacture and delivery perspective, but also with due regard to vulnerabilities best addressed by effective cybersecurity practices. Whether the motive of the hacker is financial or political, our best course is to come together in a cooperative manner to build cyber defenses at both the prevention and damage control phases of these pernicious attacks. Wishing you all success in your own cyber endeavors. Warmest regards, Gary S. Miliefsky Gary S.Miliefsky, CISSP®, fmDHS CEO, Cyber Defense Media Group Publisher, Cyber Defense Magazine P.S. When you share a story or an article or information about CDM, please use #CDM and @CyberDefenseMag and @Miliefsky – it helps spread the word about our free resources even more quickly Cyber Defense eMagazine – June 2021 Edition 4 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide. @CYBERDEFENSEMAG CYBER DEFENSE eMAGAZINE Published monthly by the team at Cyber Defense Media Group and distributed electronically via opt-in Email, HTML, PDF and Online Flipbook formats. PRESIDENT & CO-FOUNDER Stevin Miliefsky [email protected] INTERNATIONAL EDITOR-IN-CHIEF & CO-FOUNDER Pierluigi Paganini, CEH InfoSec Knowledge is Power. We will [email protected] always strive to provide the latest, most US EDITOR-IN-CHIEF up to date FREE InfoSec information. Yan Ross, JD [email protected] From the International ADVERTISING Marketing Team [email protected] Editor -in-Chief… CONTACT US: Cyber Defense Magazine We live in hope that the deleterious effects of the continued spread Toll Free: 1-833-844-9468 of COVID-19 will soon abate. But from month to month, there seems International: +1-603-280-4451 to be a lack of certainty on these issues from those institutions on SKYPE: cyber.defense which we all rely. http://www.cyberdefensemagazine.com Copyright © 2021, Cyber Defense Magazine, a division of Fortunately, from an international cybersecurity point of view, we CYBER DEFENSE MEDIA GROUP (a Steven G. Samuels LLC d/b/a) do see continued cooperation among the participants in the 276 Fifth Avenue, Suite 704, New York, NY 10001 governmental, corporate, and international sectors. EIN: 454-18-8465, DUNS# 078358935. All rights reserved worldwide. Whether it’s an issue of regulatory compliance, civil and criminal liability, or business continuity, it appears that the systems for dealing with cybersecurity challenges are holding up under the PUBLISHER demands. Gary S. Miliefsky, CISSP® That’s a hopeful note for all of us operating in the international Learn more about our founder & publisher at: arena, since so many of our endeavors are dependent on the http://www.cyberdefensemagazine.com/about-our-founder/ continued ability of these organizations to function under trying circumstances. 9 YEARS OF EXCELLENCE! Providing free information, best practices, tips and As always, we encourage cooperation and compatibility among techniques on cybersecurity since 2012, Cyber Defense nations and international organizations in responding to these magazine is your go-to-source for Information Security. cybersecurity and privacy matters. We’re a proud division of Cyber Defense Media Group: To our faithful readers, we thank you, CDMG B2C MAGAZINE Pierluigi Paganini International Editor-in-Chief B2B/B2G MAGAZINE TV RADIO AWARDS PROFESSIONALS WEBINARS Cyber Defense eMagazine – June 2021 Edition 5 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide. Welcome to CDM’s June 2021 Issue From the U.S. Editor-in-Chief Once again, we
Load more

Recommended publications
  • Watch out for Fake Virus Alerts
    State of West Virginia Cyber Security Tip ALERT West Virginia Office of Information Security and Controls – Jim Richards, WV Chief Information Security Officer WATCH OUT FOR FAKE VIRUS ALERTS Rogue security software, also known as "scareware," is software that appears to be beneficial from a security perspective (i.e. free virus scan) but provides limited or no security, generates erroneous or misleading alerts, or attempts to lure users into participating in fraudulent transactions. How does rogue security software get on my computer? Rogue security software designers create legitimate looking pop-up windows that advertise security update software. These windows might appear on your screen while you surf the web. The "updates" or "alerts" in the pop-up windows call for you to take some sort of action, such as clicking to install the software, accept recommended updates, or remove unwanted viruses or spyware. When you click, the rogue security software downloads to your computer. Rogue security software might also appear in the list of search results when you are searching for trustworthy antispyware software, so it is important to protect your computer. What does rogue security software do? Rogue security software might report a virus, even though your computer is actually clean. The software might also fail to report viruses when your computer is infected. Inversely, sometimes, when you download rogue security software, it will install a virus or other malicious software on your computer so that the software has something to detect. Some rogue security software might also: Lure you into a fraudulent transaction (for example, upgrading to a non-existent paid version of a program).
    [Show full text]
  • Clickjacking
    Security Now! Transcript of Episode #168 Page 1 of 18 Transcript of Episode #168 ClickJacking Description: Steve and Leo discuss yet another challenge to surfing safely in the web world: Known as "ClickJacking," or more formally as "UI Redressing," this class of newly popular threats tricks web users into performing web-based actions they don't intend by leading them to believe they are doing something else entirely. High quality (64 kbps) mp3 audio file URL: http://media.GRC.com/sn/SN-168.mp3 Quarter size (16 kbps) mp3 audio file URL: http://media.GRC.com/sn/sn-168-lq.mp3 INTRO: Netcasts you love, from people you trust. This is TWiT. Leo Laporte: Bandwidth for Security Now! is provided by AOL Radio at AOL.com/podcasting. This is Security Now! with Steve Gibson, Episode 168 for October 30, 2008: Clickjacking. It's time for Security Now!, the show where we cover everything you'd ever want to know about security. And we do it with a guy who is the king, really, as far as I'm concerned, the man who discovered spyware, named spyware, wrote some of the most used security utilities out there, including ShieldsUP!, Mr. Steve Gibson of GRC.com. Hi, Steve. Steve Gibson: Yes, in fact sometimes we're discussing things that you'd rather wish weren't the case. I mean... Leo: Well, lately it's been kind of bleak because it's like, there's bad stuff, and there doesn't really seem like there's any cure. Steve: Yes, that's true.
    [Show full text]
  • Forescout Counteract® Endpoint Support Compatibility Matrix Updated: October 2018
    ForeScout CounterACT® Endpoint Support Compatibility Matrix Updated: October 2018 ForeScout CounterACT Endpoint Support Compatibility Matrix 2 Table of Contents About Endpoint Support Compatibility ......................................................... 3 Operating Systems ....................................................................................... 3 Microsoft Windows (32 & 64 BIT Versions) ...................................................... 3 MAC OS X / MACOS ...................................................................................... 5 Linux .......................................................................................................... 6 Web Browsers .............................................................................................. 8 Microsoft Windows Applications ...................................................................... 9 Antivirus ................................................................................................. 9 Peer-to-Peer .......................................................................................... 25 Instant Messaging .................................................................................. 31 Anti-Spyware ......................................................................................... 34 Personal Firewall .................................................................................... 36 Hard Drive Encryption ............................................................................. 38 Cloud Sync ...........................................................................................
    [Show full text]
  • Mcafee Epolicy Orchestrator DATA SHEET
    DATA SHEET McAfee ePolicy Orchestrator Centrally get, visualize, share, and act on security insights Security management requires cumbersome juggling between tools and data. This puts the adversary at an advantage by offering more time to exploit the gap not seen between the tools and do damage. In addition, the cybersecurity workforce is limited and needs to be empowered to manage cybersecurity complexity. The McAfee® ePolicy Orchestrator® (McAfee ePO™) management platform removes the time-consuming and potential human error effort and inspires those responsible to manage security quicker and with higher efficacy. Fundamental Security Proven Advanced Security Management Start with the fundamentals. Core to any security More than 30,000 businesses and organizations trust architecture is the ability to monitor and control the the McAfee ePO console to manage security, streamline health of endpoints and systems. Industry standards and automate compliance processes, and increase such as Center for Internet Security (CIS) Controls and overall visibility across endpoint, network, and security National Institute of Standards Technology (NIST) SP operations. Big companies rely on the McAfee ePO 800 153 security and privacy controls call this out as console’s highly scalable architecture, allowing large a must. The McAfee ePO console allows you to gain enterprises to manage hundreds and thousands of critical visibility and set and automatically enforce nodes from a single console. The McAfee ePO console policies to ensure a healthy security posture across provides an enterprise security administrator with the your enterprise. Policy management and enforcement opportunity to simplify policy maintenance, pull in third- across security products for your entire enterprise party threat intelligence leveraging Data Exchange Layer is accomplished from a single console, removing the (DXL), and integrate policies bi-directionally with an array complexity of managing multiple products.
    [Show full text]
  • Hostscan 4.8.01064 Antimalware and Firewall Support Charts
    HostScan 4.8.01064 Antimalware and Firewall Support Charts 10/1/19 © 2019 Cisco and/or its affiliates. All rights reserved. This document is Cisco public. Page 1 of 76 Contents HostScan Version 4.8.01064 Antimalware and Firewall Support Charts ............................................................................... 3 Antimalware and Firewall Attributes Supported by HostScan .................................................................................................. 3 OPSWAT Version Information ................................................................................................................................................. 5 Cisco AnyConnect HostScan Antimalware Compliance Module v4.3.890.0 for Windows .................................................. 5 Cisco AnyConnect HostScan Firewall Compliance Module v4.3.890.0 for Windows ........................................................ 44 Cisco AnyConnect HostScan Antimalware Compliance Module v4.3.824.0 for macos .................................................... 65 Cisco AnyConnect HostScan Firewall Compliance Module v4.3.824.0 for macOS ........................................................... 71 Cisco AnyConnect HostScan Antimalware Compliance Module v4.3.730.0 for Linux ...................................................... 73 Cisco AnyConnect HostScan Firewall Compliance Module v4.3.730.0 for Linux .............................................................. 76 ©201 9 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.
    [Show full text]
  • A Semi-Automated Security Advisory System to Resist Cyber-Attack in Social Networks
    A Semi-Automated Security Advisory System to Resist Cyber-attack in Social Networks Samar Muslah Albladi and George R S Weir University of Strathclyde, Glasgow G1 1XH, UK {samar.albladi; george.weir}@strath.ac.uk Abstract. Social networking sites often witness various types of social engi- neering (SE) attacks. Yet, limited research has addressed the most severe types of social engineering in social networks (SNs). The present study in- vestigates the extent to which people respond differently to different types of attack in a social network context and how we can segment users based on their vulnerability. In turn, this leads to the prospect of a personalised security advisory system. 316 participants have completed an online-ques- tionnaire that includes a scenario-based experiment. The study result re- veals that people respond to cyber-attacks differently based on their de- mographics. Furthermore, people’s competence, social network experience, and their limited connections with strangers in social networks can decrease their likelihood of falling victim to some types of attacks more than others. Keywords: Advisory System, Social Engineering, Social Networks. 1 Introduction Individuals and organisations are becoming increasingly dependent on working with computers, accessing the World Wide Web and, more importantly, sharing data through virtual communication. This makes cyber-security one of today’s greatest issues. Pro- tecting people and organisations from being targeted by cybercriminals is becoming a priority for industry and academia [1]. This is due to the huge potential damage that could be associated with losing valuable data and documents in such attacks. Previous research focuses on identifying factors that influence people’s vulnerability to cyber-attack [2] as the human has been characterised as the weakest link in infor- mation security research.
    [Show full text]
  • Q3 Consumer Endpoint Protection Jul-Sep 2020
    HOME ANTI- MALWARE PROTECTION JUL - SEP 2020 selabs.uk [email protected] @SELabsUK www.facebook.com/selabsuk blog.selabs.uk SE Labs tested a variety of anti-malware (aka ‘anti-virus’; aka ‘endpoint security’) products from a range of well-known vendors in an effort to judge which were the most effective. Each product was exposed to the same threats, which were a mixture of targeted attacks using well-established techniques and public email and web-based threats that were found to be live on the internet at the time of the test. The results indicate how effectively the products were at detecting and/or protecting against those threats in real time. 2 Home Anti-Malware Protection July - September 2020 MANAGEMENT Chief Executive Officer Simon Edwards CONTENTS Chief Operations Officer Marc Briggs Chief Human Resources Officer Magdalena Jurenko Chief Technical Officer Stefan Dumitrascu Introduction 04 TEstING TEAM Executive Summary 05 Nikki Albesa Zaynab Bawa 1. Total Accuracy Ratings 06 Thomas Bean Solandra Brewster Home Anti-Malware Protection Awards 07 Liam Fisher Gia Gorbold Joseph Pike 2. Threat Responses 08 Dave Togneri Jake Warren 3. Protection Ratings 10 Stephen Withey 4. Protection Scores 12 IT SUPPORT Danny King-Smith 5. Protection Details 13 Chris Short 6. Legitimate Software Ratings 14 PUBLICatION Sara Claridge 6.1 Interaction Ratings 15 Colin Mackleworth 6.2 Prevalence Ratings 16 Website selabs.uk Twitter @SELabsUK 6.3 Accuracy Ratings 16 Email [email protected] Facebook www.facebook.com/selabsuk 6.4 Distribution of Impact Categories 17 Blog blog.selabs.uk Phone +44 (0)203 875 5000 7.
    [Show full text]
  • Android Malware Category and Family Detection and Identification Using Machine Learning
    Android Malware Category and Family Detection and Identification using Machine Learning Ahmed Hashem El Fiky1*, Ayman El Shenawy1, 2, Mohamed Ashraf Madkour1 1 Systems and Computer Engineering Dept., Faculty of Engineering, Al-Azhar University, Cairo, Egypt. 1 Systems and Computer Engineering Dept., Faculty of Engineering, Al-Azhar University, Cairo, Egypt. 2 Software Engineering and Information Technology, Faculty of Engineering and Technology, Egyptian Chinese University, Cairo, Egypt. [email protected] [email protected] [email protected] Abstract: Android malware is one of the most dangerous threats on the internet, and it's been on the rise for several years. Despite significant efforts in detecting and classifying android malware from innocuous android applications, there is still a long way to go. As a result, there is a need to provide a basic understanding of the behavior displayed by the most common Android malware categories and families. Each Android malware family and category has a distinct objective. As a result, it has impacted every corporate area, including healthcare, banking, transportation, government, and e-commerce. In this paper, we presented two machine- learning approaches for Dynamic Analysis of Android Malware: one for detecting and identifying Android Malware Categories and the other for detecting and identifying Android Malware Families, which was accomplished by analyzing a massive malware dataset with 14 prominent malware categories and 180 prominent malware families of CCCS-CIC- AndMal2020 dataset on Dynamic Layers. Our approach achieves in Android Malware Category detection more than 96 % accurate and achieves in Android Malware Family detection more than 99% accurate. Our approach provides a method for high-accuracy Dynamic Analysis of Android Malware while also shortening the time required to analyze smartphone malware.
    [Show full text]
  • Consumer Security Products Performance Benchmarks (Edition 2) Antivirus & Internet Security Windows 10
    Consumer Security Products Performance Benchmarks (Edition 2) Antivirus & Internet Security Windows 10 January 2020 Document: Consumer Security Products Performance Benchmarks (Edition 2) Authors: J. Han, D. Wren Company: PassMark Software Date: 13 January 2020 Edition: 2 File: Consumer_Security_Products_Performance_Benchmarks_2020_Ed_2.docx Consumer Security Performance Benchmarks 2019 PassMark Software Table of Contents TABLE OF CONTENTS ......................................................................................................................................... 2 REVISION HISTORY ............................................................................................................................................ 3 REFERENCES ...................................................................................................................................................... 3 EXECUTIVE SUMMARY ...................................................................................................................................... 4 OVERALL SCORE ................................................................................................................................................ 5 PRODUCTS AND VERSIONS ............................................................................................................................... 6 PERFORMANCE METRICS SUMMARY ................................................................................................................ 7 TEST RESULTS ................................................................................................................................................
    [Show full text]
  • Financial Fraud and Internet Banking: Threats and Countermeasures
    Report Financial Fraud and Internet Banking: Threats and Countermeasures By François Paget, McAfee® Avert® Labs Report Financial Fraud and Internet Banking: Threats and Countermeasures Table of Contents Some Figures 3 U.S. Federal Trade Commission Statistics 3 CyberSource 4 Internet Crime Complaint Center 4 In Europe 5 The Many Faces of Fraud 6 Small- and large-scale identity theft 7 Carding and skimming 8 Phishing and pharming 8 Crimeware 9 Money laundering 10 Mules 10 Virtual casinos 11 Pump and dump 12 Nigerian advance fee fraud (419 fraud) 12 Auctions 14 Online shopping 16 Anonymous payment methods 17 Protective Measures 18 Scoring 18 Europay, MasterCard, and Visa (EMV) standard 18 PCI-DSS 19 Secure Sockets Layer (SSL) and Transport Secured Layer (TLS) protocols 19 SSL extended validation 20 3-D Secure technology 21 Strong authentication and one-time password devices 22 Knowledge-based authentication 23 Email authentication 23 Conclusion 24 About McAfee, Inc. 26 Report Financial Fraud and Internet Banking: Threats and Countermeasures Financial fraud has many faces. Whether it involves swindling, debit or credit card fraud, real estate fraud, drug trafficking, identity theft, deceptive telemarketing, or money laundering, the goal of cybercriminals is to make as much money as possible within a short time and to do so inconspicuously. This paper will introduce you to an array of threats facing banks and their customers. It includes some statistics and descriptions of solutions that should give readers—whether they are responsible for security in a financial organization or a customer—an overview of the current situation. Some Figures U.S.
    [Show full text]
  • Ten Strategies of a World-Class Cybersecurity Operations Center Conveys MITRE’S Expertise on Accumulated Expertise on Enterprise-Grade Computer Network Defense
    Bleed rule--remove from file Bleed rule--remove from file MITRE’s accumulated Ten Strategies of a World-Class Cybersecurity Operations Center conveys MITRE’s expertise on accumulated expertise on enterprise-grade computer network defense. It covers ten key qualities enterprise- grade of leading Cybersecurity Operations Centers (CSOCs), ranging from their structure and organization, computer MITRE network to processes that best enable effective and efficient operations, to approaches that extract maximum defense Ten Strategies of a World-Class value from CSOC technology investments. This book offers perspective and context for key decision Cybersecurity Operations Center points in structuring a CSOC and shows how to: • Find the right size and structure for the CSOC team Cybersecurity Operations Center a World-Class of Strategies Ten The MITRE Corporation is • Achieve effective placement within a larger organization that a not-for-profit organization enables CSOC operations that operates federally funded • Attract, retain, and grow the right staff and skills research and development • Prepare the CSOC team, technologies, and processes for agile, centers (FFRDCs). FFRDCs threat-based response are unique organizations that • Architect for large-scale data collection and analysis with a assist the U.S. government with limited budget scientific research and analysis, • Prioritize sensor placement and data feed choices across development and acquisition, enteprise systems, enclaves, networks, and perimeters and systems engineering and integration. We’re proud to have If you manage, work in, or are standing up a CSOC, this book is for you. served the public interest for It is also available on MITRE’s website, www.mitre.org. more than 50 years.
    [Show full text]
  • Saint Francis Healthcare Stays Safe from Cyberattacks Secures Thousands of Endpoints Vital to Patient Care
    GravityZone Success Story Saint Francis Healthcare stays safe from cyberattacks Secures thousands of endpoints vital to patient care THE CUSTOMER Saint Francis Healthcare System is a 308-bed facility serving more than 713,000 people Industry throughout Missouri, Illinois, Kentucky, Tennessee and Arkansas. The progressive, innovative Healthcare regional tertiary care referral center has been named one of the top 100 “Best Places to Work in Healthcare” by Modern Healthcare magazine for six consecutive years. Headquarters Cape Girardeau, Missouri, U.S.A Employees THE CHALLENGE 3,000 (IT staff, 24) With patients’ health at stake, physicians need uninterrupted access to vital medical information. Challenges Saint Francis Healthcare System’s previous antivirus software, from Trend Micro, made this Faulty antivirus software more challenging because it erroneously blocked critical applications, requiring doctors to call for blocked physicians’ access to support at all hours. critical applications while scan storms crippled virtual desktop The Trend Micro software also created scan storms, dragging virtual desktop sessions to a crawl. performance. A second security This forced the IT team to remove antivirus programs from the virtual desktop infrastructure, solution created policy conflicts leaving thousands of endpoints unprotected. and an administrative burden. To fill the gap, IT added protection with Malwarebytes. Still, the infamous CryptoLocker Solution ransomware evaded the protective layer, disrupting productivity. Because policies across Trend Bitdefender GravityZone Micro and Malwarebytes often conflicted, engineers couldn’t keep up with the constant fixes, Enterprise Security Suite, which further exposed endpoint protection to risk. deployed on premises to protect physical and virtual desktops, and servers and ensure secure, THE SOLUTION reliable access to vital medical To consolidate and strengthen endpoint protection, Saint Francis Healthcare System evaluated and administrative applications.
    [Show full text]