HealthLeaders Media is the leading publisher of healthcare business news and information. Our audience is made up of over 125,000 senior level executives and key decision makers.
We produce a range of publications, products, and events for the healthcare business leader. With varying frequencies and multiple audiences, we can offer our sponsors greater awareness, engagement and conversion.
Expand your reach to thousands of top healthcare leaders - download our media kit to explore how.
U.S. healthcare providers are venturing into the treacherous waters of value-based care, and many are starting their voyages in leaky boats, according to a recent survey of industry executives conducted by HealthLeaders Media and sponsored by RelayHealth.
Investing in healthcare benefits education and outreach for consumers can pay big dividends in the form of financial patient satisfaction and loyalty when those consumers become patients. Read this article to learn more.
Tech advances like the cloud, mobile technology, and the app-based software model have changed the way today’s modern business operates.
They’ve also changed the way criminals attack and steal from businesses. Criminals strive to be agile in much the same way that companies do. Spreading malware is a favorite technique among attackers. According to the 2019 Data Breach Investigations Report, 28% of data breaches included malware.¹
While malware’s pervasiveness may not come as a surprise to many people, what’s not always so well understood is that automating app attacks—by means of malicious bots —is the most common way cybercriminals commit their crimes and spread malware. It helps them achieve scale.
Safeguarding the identity of users and managing the level of access they have to critical business applications could be the biggest security challenge organizations face in today’s assumed breach world.
Published By: Blackberry
Published Date: Jul 12, 2019
Law firms have received two dramatic wake-up calls about the vital importance of data
security in the last two years. First, there was the leak of 11.5 million documents from
offshore law firm Mossack Fonseca, known as the Panama Papers, which became public
Then came the massive cyberattack on prominent global law firm DLA Piper
in the summer of 2017.2
As we will explore, despite the industry’s aversion to media
coverage of such attacks, less-visible breaches involving the legal profession are being
reported worldwide in ever-increasing numbers.
As the number and severity of cyberattacks continue to grow with no end in sight, cybersecurity teams are implementing new tools and processes to combat these emerging threats. However, the oneoverriding requirement for meeting this challenge is improved speed. Whether it’s speed of detection, speed of remediation or other processes that now need to be completed faster, the ability to do things quickly is key to effective cybersecurity.
The reason why speed is essential is simple: As the dwell time for malware
increases, the lateral spread of an attack broadens, the number of potentially breached files expands, and the difficulty in remediating the threat increases. And the stealthy nature of many of the newer threats makes finding them faster?before they become harder to detect?a critical focus in reducing the impact of an intrusion. These requirements make it essential that security operations centers (SOCs) can complete their activities
far more quickly, both now and moving forwa
The Security Operations Center (SOC) is the first line of defense against cyber attacks. They are charged with defending the business against the many new and more virulent attacks that occur all day, every day. And the pressure on the SOC is increasing.
Their work is more important, as the cost of data breaches are now substantial. The Ponemon Institute’s “2017 Cost of Data Breach Study” says the average cost of an incursion is $3.62 million. The study also says larger breaches are occurring, with the average breach impacting more than 24,000 records. And with new regulations such as the EU’s General Data Protection Requirement (GDPR) putting stiff financial penalties on breaches of personal data, the cost of a breach can have material impact on the financial
results of the firm. This trend toward increasingly onerous statutory demands will continue, as the U.S. is now considering the Data Privacy Act, which will bring more scrutiny and accompanying penalties for breaches involving
Published By: Gigamon
Published Date: Sep 03, 2019
We’ve arrived at the second anniversary of the Equifax breach and we now know much more about what happened due to the August 2018 release of the GAO Report. New information came out of that report that was not well-understood at the time of the breach. For example, did you know that while Equifax used a tool for network layer decryption, they had certificates nine months out of date? This lapse gave the threat actors all the time they needed to break in and exfiltrate reams of personal data. As soon as Equifax updated the certs on their decryption tools, they began to realize what happened.
On the heels of the Equifax breach, we are reminded of the importance of efficient decryption for effective threat detection. That’s more important than ever today; Ponemon Institute reports that 50% of all malware attacks utilize encryption.
During this webinar, we’ll talk about:
-How TLS/SSL encryption has become a threat vector
-Why decryption is essential to security and how to effectively pe
Published By: Gigamon
Published Date: Sep 03, 2019
Network performance and security are vital
elements of any business. Organisations are
increasingly adopting virtualisation and cloud
technologies to boost productivity, cost savings
and market reach.
With the added complexity of distributed
network architectures, full visibility is necessary
to ensure continued high performance and
security. Greater volumes of data, rapidlyevolving threats and stricter regulations have
forced organisations to deploy new categories
of security tools, e.g. Web Access Firewalls
(WAFs) or Intrusion Prevention Systems (IPS).
Yet, simply adding more security tools may not
always be the most efficient solution.
Published By: Experian
Published Date: Aug 29, 2019
Card-not-present fraud is estimated to reach $19.3 billion by 2022. Online payment fraud will grow 13.7% from 2017-2022 – Juniper
Dive deeper into these data points with a focus on assessing the impact, challenges and opportunities presented by emerging payment mechanisms and regulation, as well as an in-depth assessment of sector-specific trends and outlook in regard to digital fraud. It provides essential reading for those wishing to understand where the key strategic focus should lie and how market forces are affecting the industry.
Published By: CheckMarx
Published Date: Jun 21, 2019
DevSecOps, modern web application design and high-profile breaches are expanding the scope of the AST market. Security and risk management leaders will need to meet tighter deadlines and test more complex applications by accelerating efforts to integrate and automate AST in the software life cycle.
As Italy’s businesses grew increasingly vulnerable to the threat of ransomware, data breaches, and other malicious malware attacks, service provider Telecom Italia sought an innovative solution to effectively and efficiently protect the network and data of its business users.
In this case study, you’ll read about how Italy’s largest service provider partnered with Cisco Umbrella to increase value for customers and accelerate their revenues with cloud security.
Today’s security appliances and agents must wait until malware reaches the perimeter or endpoint before they can detect or prevent it. OpenDNS arrests attacks earlier in the kill chain. Enforcing security at the DNS layer prevents a malicious IP connection from ever being established or a malicious file from ever being downloaded. This same DNS layer of network security can contain malware and any compromised system from exfiltrating data. Command & control (C2) callbacks to the attacker’s botnet infrastructure are blocked over any port or protocol. Unlike appliances, the cloud service protects devices both on and off the corporate network. Unlike agents, the DNS layer protects every device connected to the network — even IoT. It is the easiest and fastest layer of security to deploy everywhere.
Users are working off-hours, off-network, and off-VPN. Are you up on all the ways DNS can be used to secure them? If not, maybe it’s time to brush up. More than 91% of malware uses DNS to gain command and control, exfiltrate data, or redirect web traffic. Because DNS is a protocol used by all devices that connect to the internet, security at the DNS layer is critical for achieving the visibility and protection you need for any users accessing the internet. Learn how DNS-layer security can help you block threats before they reach your network or endpoints.
You are doing everything you can to avoid breaches. But what happens when a hacker manages to bypass your security? In this webinar we will show you how to build a strong security posture and a layered defence that will give you the ability to quickly respond to breaches. We will cover: - The evolving threat landscape and why prevention-only strategies eventually fail - How to build a strong first line of defence to reduce exposure to threats - Protect your last line of defence with retrospective security - A quick demo of how Cisco Umbrella and AMP for Endpoints work together to contain, detect and remediate threats in real time - An overview of how Incident Response Services can help you with the skills you need to manage a breach
"Cloud applications provide scale and cost benefits over legacy on-premises solutions. With more users going direct-to-internet from any device, the risk increases when users bypass security controls. We can help you reduce this risk across all of your cloud and on-premises applications with a zero-trust strategy that validates devices and domains, not just user credentials.
See why thousands of customers rely on Duo and Cisco Umbrella to reduce the risks of data breaches and improve security. Don’t miss this best-practices discussion focused on the key role DNS and access control play in your zero-trust security strategy.
Attendees will learn how to:
? Reduce the risk of phishing attacks and compromised credentials
? Improve speed-to-security across all your cloud applications
? Extend security on and off-network without sacrificing usability"
Regardless of whether your data resides on-premises, in the cloud, or a
combination of both, you are vulnerable to security threats, data breaches,
data loss, and more. Security is often cited as a concern for organizations
who are migrating to the public cloud, but the belief that the public cloud
is not secure is a myth. In fact, the leading public cloud service providers
have built rigorous security capabilities to ensure that your applications,
assets, and services are protected. Security in the public cloud is now
becoming a driver for many organizations, but in a rapidly evolving
multicloud environment, you must keep up with changes that might
impact your security posture.
This eBook outlines the three core recommendations for cloud security
across Amazon Web Services (AWS), Microsoft Azure, and Google
Public clouds have fundamentally changed the way organizations build,
operate, and manage applications. Security for applications in the cloud
is composed of hundreds of configuration parameters and is vastly
different from security in traditional data centers. According to Gartner,
“Through 2020, at least 95% of cloud breaches will be due to customer
misconfiguration, mismanaged credentials or insider theft, not cloud
The uniqueness of cloud requires that security teams rethink classic
security concepts and adopt approaches that address serverless, dynamic,
and distributed cloud infrastructure. This includes rethinking security
practices across asset management, compliance, change management,
issue investigation, and incident response, as well as training and
We interviewed several security experts and asked them how public
cloud transformation has changed their cloud security and compliance
responsibilities. In this e-book, we will share the top
Technology empowers governments to improve how and when they reach citizens. It improves the quality and accessibility of public services, ultimately creating a more productive environment where citizens can thrive. Leveraging the cloud is one way governments can accelerate this shift, with benefits occurring first inside the institution.
Local and regional governments around the world are using the cloud to transform services, improve their operations, and reach new horizons for citizen services. The Amazon Web Services (AWS) cloud enables data collection, analysis, and decision making for smarter cities. This whitepaper provides strategic considerations for local and regional governments to consider as they identify which IT systems and applications to move to the cloud. Real examples that show how cities can stop wasting money, move faster, and innovate.
Even after decades of industry and technology advancements, there still is no universal, integrated storage solution that can reduce risk, enable profitability, eliminate complexity and seamlessly integrate into the way businesses operate and manage data at scale? To reach these goals, there are capabilities that are required to achieve the optimum results at the lowest cost. These capabilities include availability, reliability, performance, density, manageability and application ecosystem integration? This paper outlines a better way to think about storing data at scale—solving these problems not only today, but well into the future?
2017 and 2018 were not easy years to be a CIO or CISO, and 2019 isn’t showing any signs of being easier. With so many career-ending-level data breaches in 2017 (e.g., Equifax, Uber, Yahoo, to name a few) and with the stronger regulatory requirements worldwide, CIOs/CISOs have a corporate responsibility to rethink their approach to data security. Regulatory compliance aside, companies have a responsibility to their customers and shareholders to protect data, and minimize its exposure not only to external attackers but also to employees. The most common method of data breach in 2017 was a phishing email sent to a company’s internal employees (See 2017 Data Breach Investigation Report), This makes employees unwillingly complicit in the data breach. Over 80% of successful cyberattacks have a critical human element that enabled them. The average employee who opens the innocent-looking attachment or link, is unintentionally jeopardizing a company’s data. While there is no 100% protection, th