Is Your Technology Provider Creating A Security Loophole?

As an EHR/Pm consultant and Managed Service Providers (MSP), Qventive offers our clients IT consulting and support, effectively managing all your IT and EHR/PM needs. MSPs can act as an internal IT department that implements and maintains your technology solutions and infrastructure and ensures that your data is secure.

To effectively monitor and manage their client’s systems MSPs often establish remote connections to all their client’s networks.  Unfortunately, those multiple connections make MSPs a prime target for ransomware. Essentially, a hacker can gain access to not just the MSP’s network, but all their clients too, with a single attack. With one hack they are able to capture the critical data of countless businesses—and then hold that data for ransom at a very high price.

The Ransomware Threat For MSPs & Healthcare Providers

Ransomware attacks are gaining popularity. Global cyber insurance provider Beazley reported a 37% increase in ransomware attacks in the third quarter of 2019 compared to the previous quarter. Particularly worrying is that a staggering 25% of all incidents were against MSPs. Additionally, healthcare businesses are high value targets for cybercriminals because of the unique patient information they store.

If your MSP isn’t taking steps to secure themselves, they are not only putting their business and reputation at risk, but their clients as well. Here at Qventive, we understand the gravity of this threat and practice what we preach to our clients when it comes to cybersecurity. We don’t leave anything up to chance and prepare by implementing the best security practices and regularly scanning for vulnerabilities. We take every precaution to ensure we not only keep your system secure but ours as well.

Here are a few of the security precautions we currently take:

1. A Strong Security Methodology

Just like what we do for our clients, we strive to identify and close as many possible doors into our systems. We strongly believe in practicing what we preach and ensuring we take extensive security precautions to ensure our clients stay protected.

2. Business Class Security Tools

Just like how we outfit our clients with top-notch security solutions, we have fortified ourselves as well. Our security tools and software can perform blocking and create secure connections between remote sites and our main location.

3. Network Segmentation

To prevent a hacker from gaining access to all our clients’ networks by merely accessing our own, we utilize network segmentation. We divide our system into smaller sub-networks and implement policies to control traffic flow and access to them.

4. Password Policies

We have in place cumbersome password protocols to ensure passwords are long, complex, and changes regularly.

5. Regular Security Penetration Tests

We work with an outside security firm to regularly run penetration tests on our internal systems. We understand the importance of having our work checked by another professional and identifying our gaps before a cybercriminal can.

6. Workstation Disk Encryption

Often businesses don’t worry about securing against physical vulnerabilities. We know that a lost or stolen workstation or mobile device can leave your data vulnerable. We encrypt all of our devices to protect against this threat.

Before you enter into an agreement with a technology provider or consultant, we would encourage you to ask what measures they take to protect themselves. If your current MSP isn’t taking these precautions, or if you are looking for one that does, schedule a consultation call with us today.