The Most Important Thing You Can Do to Protect Yourself Against a Cyber Attack
At the recent NIST-OCR Safeguarding Health Information (HIPAA Security) Conference, Office for Civil Rights Director Roger Severino presented OCR’s top security concerns. He stated that they include ransomware, phishing attacks, remote desktop protocol vulnerabilities, weak authentication (single factor or poor password rules), and access control, including managing accounts (and dormant accounts) of current and former workforce members.
“Attacks are now more sophisticated and more targeted,” Director Severino said. “The single most important thing you can do to protect yourself is to conduct a risk analysis.” In addition to underscoring the importance of a risk analysis, Director Severino stated that risk analysis continues to be “the area where we have had the most enforcement.”