Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

May 2021

How to tackle healthcare security threats. Top 6 Healthcare Security Best Practices

Good healthcare security practices – A prescription for healthcare Reduce the attack likelihood Reduce the attack impact Tactical Patch Management Protecting Medical Devices Third-Party Risk Management Cyphere is a UK-based cyber security services provider helping organisations to secure their most prized assets. We provide technical risk assessment (pen testing/ethical hacking) and managed security services. This advice is a true third party opinion, free from any vendor inclinations or reselling objectives.

Data Protection Impact Assessment (DPIA) GDPR - meaning, methodology and more!

A DPIA is a Data Protection Impact Assessment. It’s an assessment of the likely impact on data subjects (individual) and their rights, both regarding privacy and freedom to conduct business. The goal: To identify what measures might be needed for compliance with GDPR or equivalent legislation elsewhere in the world before beginning a new process involving personal data that will make it clear how that individual’s right is affected by this project.

Privacy Impact Assessment - PIA vs DPIA (GDPR)

Before GDPR, PIA (Privacy Impact Assessment) were a thing. This topic is around privacy impact assessment, its purpose, PIA vs DPIA and includes the underlying context of GDPR compliance. The monotony has been changed since the General Data Protection Regulation (GDPR) came into existence; it has significantly changed the concept of data privacy and security.

The biggest cyber risks for healthcare providers and how to tackle these security threats.

Security threats in healthcare relate to the safety of the clinical and administrative information systems of hospitals and healthcare service providers. Increasing cyber attacks on healthcare organisations in the last few years have been faster than the improvements in healthcare security practices. In this article, we discuss the cyber security threats and vulnerabilities of hospitals and healthcare providers, followed by best security practices aimed at improving security posture.

What does a penetration testing report look like? Why are reports so important?

The importance of pen test reports can't be undermined on the customer side. Moreso because makes the base for risk remediation activity that is a much bigger job than a pen test. Therefore, it is very important that pen test reports reflect the output of testing addressing different audiences (business and technical). What should a penetration test tell you? What is a pentest report? What to expect from a Penetration test report?

GDPR - Individual Rights

As more businesses collect and share customer personal data for their digital economy, it has significantly influenced data privacy in today’s digital age. Data is the most critical asset to both businesses and customers/users. Businesses must ensure the confidentiality and integrity of users’ data and impose strict control over personal data collection and processing.

What are the security risks of the cloud computing?

The technological change of the 21st century has seen rapid growth in the innovation and fastest adoption of cloud computing. It is now considered the most ingenious solution that removes the idea of having a data centre by helping businesses meet their needs virtually in the most cost-effective, efficient, and productive way.

Patch management : How updates, patches & bugs affect your business

What is patch management? Patch management is the process of tracking security bug(s) and applying updates (code changes) on them in existing applications, software, or programs on a computer and other technologies to improve the functionality and security of already released programs installed in systems.

Data Subject Access Request: Article 15 GDPR - The Right of Access

In today’s data-driven world, every other company and application collects a significant amount of important data and individual’s personal information such as name, email ID, address, date of birth, ID number, credit card information, and online behaviours, history and much more. Sharing data has become an essential component to many businesses and organisations; it allows the data controller and data subjects to stay connected and collaborate on many things.

The top 10 network security vulnerabilities for businesses in 2021

As per UK DCMS’s data breaches survey, about 32% of businesses in the UK have faced a form of cybersecurity threat between 2018 and 2019. As a result of these network security vulnerabilities, these businesses incurred costs on lost data and many other damages that totalled £4,180.

What is an attack vector? Assess your attack surface and how to avoid cyber attacks.

Attack vectors are defined as the means or paths by which hackers gain access to computers remotely with malicious intentions such as delivering payloads or carrying out other harmful activities. Some common ones are malware, social engineering, phishing and remote exploits.