Have cyber criminals “implanted” malware into your network?

Editor’s intro: Taking defensive measures to prevent implanted malware from hijacking your patient and practice files is imperative to keeping your data safe. 

Gary Salman discusses how to take defensive measures to help protect your network and critical patient data

It seems that you can’t turn on the TV or visit your favorite news website without reading about how cyberattacks and ransomware are crippling businesses and healthcare entities across the United States. Unfortunately, dental practices are now becoming the victims of similar attacks. We often hear dentists say, “Why would they want to come after my practice?” Your practice is being targeted because of the vast amount of data you store. In addition, we are now seeing scenarios where dental practices are targeted because their IT company or even their accountant’s office was hacked, and the criminals then used this data to attack or target their practices. It is important to understand that the days of simply relying on firewalls and antivirus software to keep hackers out of your network are over. If these devices were so effective at protecting your data, there would be no data breaches. With the continued sophistication of hackers, they can now deliver payloads that completely disable your antivirus software and allow unauthorized access to your network.

Cybercriminals are targeting practices through phishing or spear phishing campaigns. The hackers will send blanket or targeted emails to you and your staff with the intent of getting someone to either click on something or give up the credentials to your network or email system. We have seen many instances where a practice’s email system gets hacked, and the hackers then send out emails to the practice’s patients with malware attached to them. The debilitating effects of a cyberattack include loss of productivity and business continuity, lack of trust by your patients and referrals, and negative PR in the community where you worked so hard to build your reputation. Imagine opening an email and clicking on what appears to be an invoice and then getting hit with ransomware or malware.

Hackers are also breaking in through vulnerabilities (“unlocked doors and windows” on your network) or, even worse, through your IT vendor. You can no longer rely solely on your IT company to protect your network. IT companies are not cybersecurity companies. You need the knowledge and expertise of a specialist in cybersecurity to help ensure the security of your network. Hackers can scan your network for vulnerabilities in a matter of minutes and then identify and exploit these vulnerabilities in order to gain access. This approach in the dental space is much more common than you may imagine. The FBI and Department of Homeland Security posted a bulletin in the Fall of 2018 warning IT vendors that Advanced Persistent Threat Actors (APTs) are targeting IT firms in order to exploit their information to attack their clients. Since your IT vendor typically stores your IP address, user name, and password in their database, a breach will give the cybercriminal the “keys to your castle.”

Make sure to take defensive measures to help protect your network and critical patient data. It is important to work with a qualified cybersecurity company that can:

  1. Perform an audit of your existing policies and procedures
  2. Provide you with quarterly vulnerability scans of your network
  3. Conduct live employee training to educate your staff on the latest threats and learn how to prevent them
  4. Have penetration testing conducted on your network

You don’t have to be the next victim of a cyberattack if you take action NOW.

For more details on how to avoid implanted malware from becoming a practice nightmare, read another article by Gary Salman here. 

Gary Salman is Chief Executive Officer, Black Talon Security, Katonah, New York (www.blacktalonsecurity.com). He has more than 26 years of dental technology and IT experience.

Stay Relevant with Implant Practice US

Join our email list for CE courses and webinars, articles and mores

Read our following terms and conditions before subscribing.

Terms and Conditions checkbox is required.
Something went wrong. Please check your entries and try again.

SUBSCRIBE TODAY

Implant Practice US is a leading dental journal and publication for dental implantology continuing education, oral implantology case studies, and more. Subscribe to Implant Practice US today!

ONLINE DENTAL CE

Earn dental continuing education credits as an Implant Practice US subscriber. Log in for online dental CE credits now!

Other Dental Publications

AGD PACE MedMark White

SUBSCRIBE TODAY

Implant Practice US is a leading dental journal and publication for dental implantology continuing education, oral implantology case studies, and more. Subscribe to Implant Practice US today!

ONLINE DENTAL CE

Earn dental continuing education credits as an Implant Practice US subscriber. Log in for online dental CE credits now!

Other Dental Publications

Copyright © 2024 Orthodontic Practice US - Dental Journal and Online Dental CE | MedMark LLC
15720 North Greenway Hayden Loop, Suite #9 Scottsdale, AZ 85260 | All rights Reserved | Privacy Policy | Terms & Conditions

Scroll to Top