OnPage News – IoT Security

Internet of Things - IoT Security

OnPage Corporation is the Secure Messaging/Critical Alerts Leader: Learn More… IoT Security needs Scalable Solutions Article Courtesy of: TechCrunch The massive and unprecedented utility and opportunities provided by the Internet of Things (IoT) have been shadowed by grievous security and privacy tradeoffs, which have become a focal point of attention for the tech industry in the recent months. Discoveries like hacked baby monitors and remotely hijacked cars have given rise to new efforts and new initiatives, including the establishment of a foundation dedicated to defining standards and security practices for the IoT industry; a government-led solicitation project designed to encourage startups to address IoT security issues; and an educational book for children. While IoT can borrow many lessons and tactics from security protocols and technologies that have been tested in other domains, there are some glaring differences between IoT devices and traditional computing systems. The tech industry is taking strides to overcome the complexities these new […] Read more »

OnPage News – CyberIncidents

Nextgov - Cyberincidents

OnPage Corporation is the Secure Messaging/Critical Alerts Leader: Learn More…   SURVEY: MOST IT EXECS SAY THEIR COMPANIES CAN ONLY HANDLE ‘SIMPLE’ CYBERINCIDENTS Most corporate information security executives believe their teams can only handle “simple” incidents, like deactivating a lost phone or scanning a computer for a virus. This reflects a steady loss of confidence among corporate infosec pros in their ability to keep up with modern threats, according to a new global survey by ISACA, a non-profit group that certifies security professionals, and the RSA Conference, a series of events by security vendor RSA. The same survey, conducted two years ago, found that 87% of respondents were comfortable with their teams’ ability to deal with security incidents. That figure dropped to 73% in the latest survey, which polled 461 information security practitioners and managers: The survey also revealed the types of incidents that corporate infosec executives face on a daily basis. […] Read more »

OnPage – HIPAA & Cybersecurity

“OnPage solved a mandatory requirement we had in our data center for regulatory cybersecurity compliance. To cover physical or cyber intrusions, we have OnPage notifications sent out to the group on an on-call rotation for incident response.”

OnPage Corporation is the Secure Messaging/Critical Alerts Leader: Learn More… The False Promise of HIPAA for Healthcare Cybersecurity HIPAA regulations might not be enough for the current healthcare cybersecurity threats. Article Courtesy of:  Health IT Security The recent ransomware attack on Hollywood Presbyterian Medical Center highlights the healthcare cybersecurity risks organizations face today. Unfortunately, this cyber attack also reveals the inadequacy of the HIPAA Security Rule to provide guidance on the numerous healthcare cybersecurity threats that are not associated with ePHI. The reasons why HIPAA is poorly suited for the risks posed by cyber threats fall into three categories. The first is that this regulatory approach is narrowly focused on the security of PHI and addresses only a part of the overall cyber threat. The second is that a rules-based risk management approach does not work to mitigate the full range of cyber threats and cannot help healthcare organizations increase resilience against […] Read more »

OnPage News – Cyber Attacks

Cyber Attacks

OnPage Corporation is the Secure Messaging/Critical Alerts Leader: Learn More…   Article Courtesy of:  Computer Business Review Why cyber security is so important: 18 real-life hacks & cyber attacks that could disrupt your business.   A look through Verizon’s Data Data Breach Digest, which goes through 18 scenarios it has dealt with in the cyber security field. They could happen to anyone. Here they are in brief. 1. The Hyper Click This social engineering attack is one of the more sophisticated and can take weeks, or even months to discover. It is normally conducted by organised crime or state affiliates for a financial or espionage interests. The Verizon RISK team was asked by one firm to look into a primary competitor on another continent who had released a new piece of large construction equipment that looked like something developed by the victim. Far from being a digital forensic investigation, the […] Read more »

OnPage News: IT Security

OnPage - Cybersecurity

OnPage Corporation is the Secure Messaging/Critical Alerts Leader: Learn More…   IT Security And Operations Staffs Often Work At Cross-Purposes   Article Courtesy of:  Forbes Hackers and state-sponsored cyber armies aren’t the only security threats large enterprises face today. Some of the biggest risks come from outdated and poorly synchronized internal procedures that thwart efforts to quickly defend against known threats. For example, 44% of executives in North America and Europe say security breaches occur even when vulnerabilities and their remediation have already been identified. The result: many enterprises face unnecessary risks to data loss and production downtime. One reason: while the joint efforts of security and IT operations ultimately deter- mine an enterprise’s security strength, the individual goals of these two groups are often misaligned, thanks to conflicting responsibilities and different metrics for evaluating and rewarding successful performance. The result is what industry analysts are calling a “SecOps gap,” […] Read more »

OnPage News – IoT Devices – Is Your Crock Pot Spying on You?

IoT - Smart Home Controls

Article Courtesy of: Computerworld Is the Government tapping into your IoT Devices & Spying on You? The U.S. spy chief admitted the government may use your “smart” internet-connected IoT devices to spy on you. A Harvard report no sooner debunked the FBI’s “Going Dark” argument than the U.S. intelligence chief admitted the government might use your “smart” internet-connected devices to spy on you. U.S. Director of National Intelligence James Clapper testified: “Smart” IoT devices incorporated into the electric grid, vehicles—including autonomous vehicles—and household appliances are improving efficiency, energy conservation, and convenience. However, security industry analysts have demonstrated that many of these new systems can threaten data privacy, data integrity, or continuity of services. In the future, intelligence services might use the IoT for identification, surveillance, monitoring, location tracking, and targeting for recruitment, or to gain access to networks or user credentials. Clapper’s prepared testimony about spying via IoT were included in the “Worldwide Threat […] Read more »

OnPage News: Data Center Cybersecurity

data center cybersecurity

The New 80-20 Rule for Data Center Cybersecurity Article Courtesy of:  SC Magazine – Written by: Alan S. Cohen @ Illumio . For much of the IT industry, 2014 was the year of the hack.   Reporters and analysts investigated and wrote incessantly about the seemingly hourly break-ins of corporate computer systems, culminating with the Sony incident associated with the release of “The Interview.” Undoubtedly, the cybersecurity challenge is going to result in an increasing focus and spend on security systems.   The question, however, is whether this will reduce the risk. Let’s start with the corporate data center, the Fort Knox of the enterprise, and how we guard its crown jewels.  Today, the vast bulk of security spend is on the network — firewalls, IDS/IPS, APT, monitoring, etc. — and it focuses almost exclusively on the internet perimeter. These investments account for over $10 billion in hardware/software spend alone (this […] Read more »

OnPage News: Cybersecurity & Network Monitoring

Augmented Reality - OnPage Cybersecurity

Augmented Reality Innovator Chooses OnPage to Provide Priority Alerting as Part of its Proprietary Cybersecurity System   OnPage, the leader in Priority Round-Trip IT Alerting announced today that a pioneering augmented reality company has chosen OnPage to provide mobile-based priority alerting to its layered, proprietary network monitoring system. The OnPage critical alert system, was selected over the competition due to its superior ease of use and its ability to integrate easily with its internally developed infrastructure monitoring systems. “Our infrastructure is unique and requires specialized monitoring to protect us from cyber-attacks of all kinds,” said a senior systems engineer at the company. “The standard commercial remote monitoring tools cannot handle our requirements, and so we built our own. OnPage provided a simple but very effective integration capability that worked with our systems out of the box.” This innovative company has gained a reputation for pushing the technology frontier. “We are […] Read more »

OnPage News: Data Security Analytics

Data Security Analytics

Five factors for evaluating big data security analytics platforms Article Courtesy of:  TechTarget Expert Dan Sullivan outlines criteria for evaluating big data security analytics platforms for collecting, analyzing and managing large volumes of data generated for information security purposes. Increasing risks of cybercrime and other malicious activity on the Internet is prompting enterprises to deploy more security controls and collect more data than ever before. As a result, advances in big data analytics are now being applied to security monitoring for broader and more in-depth analysis to protect valuable company resources. Called big data security analytics, this technology — in part — leverages the scalability of big data and combines it with advanced analytics and security event and incident management systems (SIEM). As we noted in the last article in this series, big data security analytics is appropriate for many, but not all, use cases. Consider the challenges of detecting […] Read more »

OnPage News: Cloud Security

OnPage Cloud Security

Cloud security market to be worth $12 billion by 2022, here’s why Article Courtesy of:  TechRepublic A recent market study by Transparency Market Research projects the cloud security market to grow to $11.8 billion by 2022.   Here are the factors that could fuel that growth. A recent study performed by Transparency Market Research (TMR) projects that the global cloud security market will grow to a valuation of $11.8 billion by the year 2022. To put that into perspective, in 2014 TMR put the value of that same market at $4.5 billion. The report, officially titled Cloud Security Market – Global Industry Analysis, Size, Share, Growth, Trends and Forecast 2014-2022, was officially released on Thursday. In the report, TMR predicts that the cloud security industry is due to experience a 12.8% compound annual growth rate (CAGR) between 2015 and 2022. There are a few different reasons behind the growth, as […] Read more »

OnPage News: Data Security Strategy

Data Security - Cyber Security

Why We’re So Vulnerable Article Courtesy of:  MIT Technology Review An expert in U.S. national cybersecurity research and policy says the next generation of technology must have data security built in from the very start. In an age of continuing electronic breaches and rising geopolitical tensions over cyber-espionage, the White House is working on a national cybersecurity strategy that’s expected in early 2016. Helping to draft that strategy is Greg Shannon. He was until recently chief scientist at Carnegie Mellon University’s Software Engineering Institute and is now on leave to serve as assistant director for cybersecurity strategy at the White House Office of Science and Technology Policy. In an interview with MIT Technology Review senior writer David Talbot, Shannon explained that dealing with today’s frequent breaches and espionage threats—which have affected federal agencies as well as businesses and individuals—requires fundamentally new approaches to creating all kinds of software. Fixing the infrastructure […] Read more »

OnPage News: Healthcare Security

Healthcare Security - Anthem Data Breach

Cyber security: Attack of the Health Hackers Targeting Medical Records Breach of Anthem database, probably from China, is part of a 2015 wave of 100m hacked medical records.  Eight out of ten of the biggest hacks in the US last year were of healthcare providers caused by failed healthcare security. Last January an administrator at health insurer Anthem noticed an unusually complex query running on the computer network. It looked like a colleague was responsible, but a quick check revealed that it was coming from somewhere else.  Minutes later, Anthem was in crisis mode. Investigators believe the hackers were from China and had been operating undetected inside the company’s network for months. They gained access by tricking the employee to click on a phishing email that was disguised to look like an internal message. Using the administrator’s credentials, hackers combed through Anthem’s database containing names, social security numbers and birth […] Read more »

OnPage News: Medical Device Security

Health IT Security

Health Data Security Top 2016 Issues Article Courtesy of:  Health IT Security  “Hospital leaders have to deal with a lot of new technology issues…so this list is intended to assist them in their efforts to update or implement their strategic technology plans.” Medical device cybersecurity and health data security have both been tabbed as top healthcare issues for 2016 in separate releases. First, the ECRI Institute explained in its list of the Top 10 Technological Advances to Watch in 2016 that medical device cybersecurity is a top issue that could affect care delivery. “Hospital leaders have to deal with a lot of new technology issues—and demands from different departments in their facilities—so this list is intended to assist them in their efforts to update or implement their strategic technology plans,” Robert P. Maliff, director, applied solutions group, ECRI Institute, said in a statement. ECRI also said that mobile strike units, […] Read more »

Arkansas Electric Cooperative Corporation Chooses OnPage for Cybersecurity Compliance

OnPage Cyber Security Intrusion Compliance

“OnPage solved a mandatory requirement we had in our data center for regulatory cybersecurity intrusion compliance. To cover physical or cyber intrusions, we have OnPage notifications sent out to the group on an on-call rotation for incident response.”   – Philip Huff – Director of IT Security Compliance.    OnPage provides secure, high priority notifications in case of cyber intrusions to meet new regulatory requirements. Onset Technology, creator of OnPage® priority messaging, announced today that Arkansas Electric Cooperative Corporation, one of the nation’s largest generation and transmission cooperatives, has chosen OnPage to help meet its regulatory compliance requirements for cyber and physical security event notifications. By providing secure, critical alerts, with predefined escalation protocols, audit trails, receipt and read notifications, IT personnel are immediately notified of potential intrusions. After evaluating two other competing products, the cooperative’s Director of IT Security and Compliance, Philip Huff, and his team chose OnPage for […] Read more »