NEWS
NEC XON advises healthcare industry to follow security best practices
Armand Kruger
In the wake of recent large-scale ransomware attacks targeting the healthcare sector , the vulnerabilities within the industry are starkly evident . Malicious actors have exploited compromised credentials – a clear and present danger when Healthcare providers ’ reliance on remote access software creates avenues for adversaries to disguise themselves as legitimate users and gain unauthorised access to critical environments .
“ A prime example is the breach at UnitedHealth , where compromised credentials were abused to infiltrate internet-facing remote access services . South African healthcare organisations are not immune and , similarly , need proactive measures to enhance cybersecurity posture and mitigate the risk of ransomware attacks ,” says Armand Kruger , Head of Cyber Security , NEC XON .
These escalating cyber threats necessitate urgent collaborative efforts between government agencies , private organisations , cybersecurity experts , policymakers , and industry leaders . These players must prioritise investments and initiatives aimed at safeguarding patient , provider and insurer data and infrastructure .
Implementing a ruthless privileged access model and engaging competent Managed Security Providers , MSPs with razor-like precision in removing adversaries ’ access are critical steps in mitigating these risks . Sharing knowledge and lessons learned from past breaches is also vital for proactive threat anticipation and containment .
There are some critical steps healthcare players can take to fortify cybersecurity defences . NEC XON employs Continuous Threat Exposure Management , CTEM to monitor customer environments from the adversary ’ s perspective , promptly resetting compromised credentials and removing internet-facing systems to limit exposure .
NEC XON Managed Detection and Response , MDR team monitors internal anomalies and traces them back to their source , enhancing our ability to counter evolving threats .
KnowBe4 releases 2024 Security Culture Report highlighting African cyber readiness
KnowBe4 released its anticipated 2024 Security Culture Report for Africa , providing a detailed analysis of the intricate relationship between security practices and employee behaviours within organisations . Drawing insights from surveys conducted across thousands of organisations worldwide , the report offers a comprehensive five-year comparative view , highlighting significant trends shaping the cybersecurity landscape .
“ In its section on Africa , the report reveals that organisations evaluated across 20 African countries exhibit an average security culture score of 72 , consistent with the previous year ,” says Anna Collard , SVP of Content Strategy and Evangelist for KnowBe4 Africa . “ This shows a moderate level of readiness in security culture .”
“ The banking sector in Kenya is a standout performer , boasting an impressive average score of 83 , attributed to its steadfast commitment to maintaining mature security cultures supported by robust security operations ,” explains Collard .
Africa , with its diverse cultural fabric and youthful population projected to dominate the global workforce by 2100 , faces escalating cyber risks amidst rapid technological advancements . Challenges , including limited resources , inadequate cyber awareness , and economic constraints , marked the continent ’ s cybersecurity landscape in 2023 . This shows the need to strengthen cybersecurity readiness given the critical development requirements .
Kenya , 76 , Nigeria , 75 , and Ghana , 74 lead the charge in cybersecurity readiness , showcasing robust strategies backed by local governments . Ghana ’ s significant progress in cybersecurity , evidenced by its climb in the Global Cybersecurity Index , reflects the region ’ s commitment to cybersecurity excellence .
“ With a security culture score of 72 , it is important to address the findings from a separate survey , on generative AI , GenAI adoption by organisations in South Africa ,” adds Collard . “ That survey identified
Anna Collard
regulatory gaps and a lack of training in countering AI-generated misinformation , highlighting the need for regulations , training programmes , and partnerships to tackle cyber threats such as deepfakes , especially during the upcoming crucial governmental elections .”
14 INTELLIGENTCIO AFRICA www . intelligentcio . com