August 17, 2018
FAX MACHINES CAN BE HACKED TO BREACH A NETWORK, USING ONLY ITS NUMBER
A hacker would only need a fax number to launch a malicious attack through your fax machine. The attacker could simply send a malformed fax image to the fax machine and gain remote code execution rights on the device, which would let them run malicious code and take over the fax machine. They would then be able to download and deploy other tools to scan the network and compromise devices.
OCR LEVIES CLOSE TO $80M IN HIPAA PRIVACY RULE FINES
OCR has assessed close to $80 million in fines in 55 cases of HIPAA Privacy Rule violations since the rule took effect in April 2003. The office has investigated complaints against many types of entities, including national pharmacy chains, major medical centers, group health plans, hospital chains, and small providers.
THIRD-PARTY VENDOR ERROR EXPOSES DATA OF 19K PATIENTS FOR 2 MONTHS
A transcriptionist vendor for Orlando Orthopaedic Center made an error during a software upgrade, which resulted in the exposure of 19,101 patient records for about two months. During the upgrade process, the server was left open to the public and allowed access without authentication.
24By7Security, Inc. is a full service Cybersecurity strategy, implementation, operations and training firm. We provide Cybersecurity and Compliance related services across all functions of the enterprise. Our services include CFPB/DFA, FIPA, FERPA, SOC-SSAE 18, GLBA, HIPAA, PCI, SOX, GDPR, NYDFS Cybersecurity Regulations and others.