Any organization that holds medical records or other healthcare-related sensitive data needs to consider legislation and organizations that govern the privacy of those records. In this case, we are referring to HIPAA, the Health Insurance Portability and Accountability Act, and HITRUST, the Health Information Trust Alliance. These two acronyms are incredibly important for healthcare providers in the United States to... Read More
- Published: 27 Mar 2020
With thousands of people exposed to the COVID-19 Coronavirus and millions more under quarantine, the healthcare industry is on red alert at the moment. Just a short time ago they were worried about another virus: Bluekeep.
What is BlueKeep?
The Bluekeep vulnerability is a strain of malware that was discovered in May 2019, and was patched soon thereafter. Healthcare providers wanted to ensure that BlueKeep wasn’t anything like the EternalBlue situation just a short time ago. EternalBlue was the exploit hackers used that allowed the WannaCry ransomware attack to have such a lasting impact on the industry.
Unfortunately, many health maintenance organizations didn’t apply the necessary patches; and with the three operating systems (Windows 7, Windows Server 2008, and Windows Server 2008 R2) that the BlueKeep vulnerability affects already lacking support, the situation is definitely problematic. This is more true today as the COVID-19 virus continues to spread rapidly, putting unprecedented pressure on these hospitals and other healthcare organizations.
Even today, over 20 percent of all BlueKeep-vulnerable devices remain unpatched and nearly 45 percent of all connected medical devices remain vulnerable to attack. That includes some very important machines such as x-rays, anesthesia machines, and care-driven technologies vulnerable for an attack.
Is your practice up-to-date?
If you would like our professional IT experts to do a thorough assessment of all of your practice’s technology to see if your systems are patched and up-to-date, call us today at 1-855-405-8889.