Congratulations to tw-Security—2024 Best in KLAS® Security & Privacy Services!

We're #1! Thank you to all our partners and customers!

Impact of Ascension’s Cyberattack IT Outage Varies by Region

In Some Regions, ER Patients Still Diverted, Pharmacies Can’t Fill Prescriptions   … “Mergers and acquisitions take time to integrate into their IT operations,” said Wendell Bobst, partner and principal consultant at tw-Security. “There are limits to the size of an Epic electronic health record database. Many multistate Epic systems have different databases by region,” […]

Read More

Rehab Hospital Chain Hack Affects 101,000; Facing 6 Lawsuits

At Least 33 Ernest Health Facilities in 12 States Are Reporting Breaches   … “Network segmentation is certainly helpful in reducing lateral movement within the network,” said Joe Gillespie, senior privacy and security consultant at tw-Security. “Having 24×7 monitoring and alerting on network activity is key,” he said. “The sooner an intruder is detected, the […]

Read More

Nearly 534,000 Affected in Data Theft at Managed Care Org

Wisconsin Nonprofit Says Attackers Also Tried to Encrypt Systems, But They Failed … The fact that the ransomware was unsuccessful with encrypting the data could mean that the stored data – data at rest – was well-protected, perhaps through strong access controls, or being monitored,” said Tom Walsh, president of privacy and security consultancy tw-Security. […]

Read More

Protecting EHR Systems Against Attacks and Compromises

Why Are EHRs So Vulnerable and How Can Organizations Get Better at Protecting Them? … “EHR systems are attractive targets for cyberattacks. Once access or a compromise is made, EHRs are data-rich and can be leveraged heavily for ransom due to the operational dependency of clinicians,” said Wendell Bobst, partner and principal consultant at security […]

Read More

tw-Security is #1 in 2024 Best in KLAS® – Security & Privacy Consulting Services!

In the 2024 Best in KLAS®: Software & Services Report,  tw-Security was the 1st place winner in the category “Best in KLAS Security & Privacy Consulting Services.” With a score of 95.8, tw-Security’s engagements helped organizations assess, enhance, and develop security and privacy programs through technical or advisory work that resulted in a more secure […]

Read More

Watching the Watchdog: Learning from HHS’ Grant Payment Mess

Tight-Lipped Agency’s Next Move in Wake of $7.5M Scam Could Be Telling   … There’s no question that AI-augmented phishing and social engineering attacks will make fake emails seem even more realistic, said Keith Fricke, a partner at privacy and security firm tw-Security. Cybercriminal groups will soon start offering AI as a service to masses […]

Read More

Fallout Mounting From Recent Major Health Data Hacks

Post-Breach List of Affected Individuals Growing; More Lawsuits Filed   …”When an organization discovers it has been breached, it immediately begins a containment and eradication process,” said Wendell Bobst, a partner at consulting firm tw-Security. “Getting systems back online to restore revenue and image are usually the C-suite’s top objectives. Knowing what evidence to preserve […]

Read More

Hacking for the Holidays

How to Better Protect IT Systems Against Holiday Ransomware Threats Feature article by tw-Security President Tom Walsh As celebrations increase, so do hackers’ efforts to gain data or cripple systems with ransomware. Organizations must be aware and ramp up security efforts.   In this season of giving, it’s best to prepare for an unwelcome gift – […]

Read More

Ontario Hospitals Expect Monthlong Ransomware Recovery

Patient Care Still Disrupted and IT Network, EHR System Down Until Mid-December   … TransForm’s decision to rebuild its IT network from scratch, as opposed to taking other remediation options, likely means that core network services that run on servers were affected, said Keith Fricke, partner and principal consultant at privacy and security firm tw-Security. […]

Read More

Firm Notifies Patients of 55 Health Practices of MOVEit Hack

Anesthesiology, Pain Management, Gastro Practices Affected Across Several States   … While other sectors, including government, banking and education also have been affected, MOVEit hacks appear to be hitting the healthcare sector particularly hard, perhaps due to high numbers of patients collectively treated or serviced by victim organizations, said Wendell Bobst, senior security consultant at […]

Read More