Congratulations to tw-Security—2024 Best in KLAS® Security & Privacy Services!

We're #1! Thank you to all our partners and customers!

Protecting EHR Systems Against Attacks and Compromises

Why Are EHRs So Vulnerable and How Can Organizations Get Better at Protecting Them? … “EHR systems are attractive targets for cyberattacks. Once access or a compromise is made, EHRs are data-rich and can be leveraged heavily for ransom due to the operational dependency of clinicians,” said Wendell Bobst, partner and principal consultant at security […]

Read More

tw-Security is #1 in 2024 Best in KLAS® – Security & Privacy Consulting Services!

In the 2024 Best in KLAS®: Software & Services Report,  tw-Security was the 1st place winner in the category “Best in KLAS Security & Privacy Consulting Services.” With a score of 95.8, tw-Security’s engagements helped organizations assess, enhance, and develop security and privacy programs through technical or advisory work that resulted in a more secure […]

Read More

Watching the Watchdog: Learning from HHS’ Grant Payment Mess

Tight-Lipped Agency’s Next Move in Wake of $7.5M Scam Could Be Telling   … There’s no question that AI-augmented phishing and social engineering attacks will make fake emails seem even more realistic, said Keith Fricke, a partner at privacy and security firm tw-Security. Cybercriminal groups will soon start offering AI as a service to masses […]

Read More

Fallout Mounting From Recent Major Health Data Hacks

Post-Breach List of Affected Individuals Growing; More Lawsuits Filed   …”When an organization discovers it has been breached, it immediately begins a containment and eradication process,” said Wendell Bobst, a partner at consulting firm tw-Security. “Getting systems back online to restore revenue and image are usually the C-suite’s top objectives. Knowing what evidence to preserve […]

Read More

Hacking for the Holidays

How to Better Protect IT Systems Against Holiday Ransomware Threats Feature article by tw-Security President Tom Walsh As celebrations increase, so do hackers’ efforts to gain data or cripple systems with ransomware. Organizations must be aware and ramp up security efforts.   In this season of giving, it’s best to prepare for an unwelcome gift – […]

Read More

Ontario Hospitals Expect Monthlong Ransomware Recovery

Patient Care Still Disrupted and IT Network, EHR System Down Until Mid-December   … TransForm’s decision to rebuild its IT network from scratch, as opposed to taking other remediation options, likely means that core network services that run on servers were affected, said Keith Fricke, partner and principal consultant at privacy and security firm tw-Security. […]

Read More

Firm Notifies Patients of 55 Health Practices of MOVEit Hack

Anesthesiology, Pain Management, Gastro Practices Affected Across Several States   … While other sectors, including government, banking and education also have been affected, MOVEit hacks appear to be hitting the healthcare sector particularly hard, perhaps due to high numbers of patients collectively treated or serviced by victim organizations, said Wendell Bobst, senior security consultant at […]

Read More

Cybersecurity in Healthcare: Critical Connection to Patient Safety

Feature article by tw-Security President Tom Walsh. In a threatening digital landscape, healthcare CIOs need to to uphold patient safety by implementing cybersecurity measures. Healthcare cybersecurity can feel like a life-or-death issue with regards to patient safety, which can keep CIOs awake at night. Some hospitals have been offline for days after a cybersecurity event, which […]

Read More

VA OIG Audit Uncovers Vulnerability Management Weaknesses

Agency Details Security Review Findings in an Arizona VA Healthcare System   … Some experts say the OIG’s audit not only highlights important security risk management issues at the VA, but also in the healthcare sector overall. “The report rightly called out configuration management and security management,” said Wendell Bobst, senior security consultant at tw-Security. […]

Read More

Feds Urge Healthcare Providers, Vendors to Use Strong MFA

HIPAA-Covered Entities, Third Parties Reminded to Avoid Authentication Mistakes   … “Healthcare is lagging when it comes to fully adopting multifactor authentication,” said Tom Walsh, president of privacy and security consultancy tw-Security. “Some of this could be because of legacy applications and systems that do not support MFA,” he told Information Security Media Group. But clinicians’ […]

Read More