The 10 Most Influential Multispeciality Hospitals The 10 Most Influential Multispecialty Hospital Sm | Page 26

improves email security by providing greater accuracy on the sender's identity. DMARC is designed to identify
forged sender addresses that appear to be from legitimate organizations by providing the accurate domain name in
the 'From:' field of email message headers. It enables organizations to stop scammers from using an email domain
to attempt infiltration. The protocol basically assists the organization to stay assured that an email received from
the domain name is registered to servers that you own and prevents someone spoofing your email domain.
Below are the techniques any organization should implement to prevent from the phishing attacks.
• Audit of the Current Cybersecurity Environment
Today, the vast use of mobile and IoT devices carry a huge number of threats. Hence, organizations should
conduct an exhaustive and ongoing valuation of their susceptibilities. Also, it is beneficial for the companies to
stay aware of the threats, keeping updated patches, and using defensive tools that protect against evolving
malware.
• Segment Networks
One of the toughest challenges of safeguarding patient data is to keep the sensitive information quarantined
from the rest of the network, making the cyber attackers difficult to reach it. Implementing segmentation
employs routers, firewalls, and other various tools to restrict access to parts of the network, providing an added
layer of security to PHI.
• Train End Users
Healthcare industry is the only industry where inside threats prove superior to those from outside an
organization. Hence, to prevent accidental exposure from insiders, training employees to detect and report
suspicious email activity is pivotal. It has also been believed by various healthcare companies that training can
help to reduce attacks while improving confidence.
There is no doubt that phishing is a significant danger to healthcare organizations. It is the most chosen method for
attackers to steal medical records and to deploy Ransomware. Therefore, healthcare organizations need to mold
their systems to prevent phishing attacks from arising. As discussed above, to battle phishing, organizations need
to train employees on how to detect and avoid phishing emails. Adopting best security practices and deploying
appropriate technology would lessen the chances that a phishing attack would succeed.
- Ashwini Deshpande
| March 2019 | 24