Congratulations to tw-Security—2024 Best in KLAS® Security & Privacy Services!

We're #1! Thank you to all our partners and customers!

VA Center’s IT Legacy Flaws Common at Other Health Entities

OIG Security Audit of Texas VA Facility Found Familiar Problems … There are other reasons why many healthcare entities continue to keep legacy IT systems and equipment running long after they are no longer supported by vendors, says senior privacy and security consultant Susan Lucci of tw-Security. Risks associated with obsolescence are “not generally top of mind, […]

Read More

Texas Hospital Still Struggling Through Ransomware Attack

Attackers Demand ‘Tens of Millions Dollars’ as Entity Is ‘Walled Off From World’ …”Phone systems typically have back-end server infrastructure that can be susceptible to ransomware attack. Incident response plans must call out contingencies for communication system failures such as voice and email systems,” says Keith Fricke, principle consultant at privacy and security consultancy tw-Security. Organizations typically […]

Read More

Law Firm Says Year-Old Hack Affected PHI of 255,000 People

Besides a Lag in Reporting, Some of the Compromised Data Was a Decade-Old … Keith Fricke, principal consultant at privacy and security consultancy tw-Security, offers a similar assessment. “What is concerning about the incident is the amount of PHI involved, Fricke says “It makes you take pause and ask how many other law firms store, […]

Read More

Report: Organ Transplant Data Security Needs Strengthening

United Network of Organ Sharing Security and IT Management Under Scrutiny …”In many healthcare organizations, the IT department is overhead, meaning IT is necessary for the business operations, but it is not the main mission of the organization. Therefore, IT tends to be underfunded and understaffed,” says Tom Walsh, president of consultancy tw-Security. “Information security […]

Read More

tw-Security Scores 94.9 in KLAS 2022 Report

tw-Security Scores 94.9 in KLAS 2022 Report August 31, 2022 tw-Security scored 94.9 in overall performance in KLAS Research’s report, Security and Privacy Consulting Services 2022, Who Exceeds Expectations in This High-Performing Market? published August 25, 2022. In this performance report, based on 18 months of data and interviews with provider and payer organizations, KLAS Research scored firms specializing in healthcare […]

Read More

Latest US Health Data Breaches Follow Worrisome Trends

Federal Tally Underscores Biggest Hacking Threats, Risks From Vendors … Regulatory attention on the steady rise of business associate breaches appears to demonstrate that vendors are under closer scrutiny, says Susan Lucci, senior privacy and security consultant at consulting firm tw-Security. This is sending an important message to vendors, she says. “As a result of […]

Read More

CYBERSECURITY AND THE UKRAINE CONFLICT: WHAT’S THE LINK?

Hint: It’s hard to hit a moving target. First, some good news: Last month, our friends at Healthcare Info Security published an article about the latest breaches reported on the Department of Health and Human Services’ HIPAA Breach Reporting Tool website. Valuable data takes cover While the overall trend rate continues to rise sharply, in an all-too-rare […]

Read More

More Major Hacking Incidents Added to HHS Breach Tally

Latest Analysis of Federal Health Data Breach Reporting Site … Keith Fricke, principal consultant at privacy and security consulting firm tw-Security, offers a similar assessment. “Incident response and forensic investigation takes time, especially when the victim organization is large and has voluminous data and logs to review to determine scope of a breach,” he says. […]

Read More

Illinois Clinic Says Nearly 503,000 Affected in Email Breach

Incident Involved a Single User’s Compromised Email Account … “In some cases, hackers are trying to have an employee’s direct deposit for payroll to be re-directed to an offshore bank,” says Tom Walsh, president of privacy and security consulting firm tw-Security. “For example, if an email account gets compromised, the hacker can send an email […]

Read More

2 Healthcare Hacking Incidents Affect 310,000 Patients

Experts Urge Entities to Bolster Security Now, Before They Become Similar Victims … “Strengthening security controls should have been on the radars of healthcare organizations for many years now,” says Keith Fricke, principal consultant at privacy and security consultancy tw-Security. Current challenges in implementing these controls include a national shortage of information security professionals and the […]

Read More