Tag Archive for: collaborates

FDA Collaborates with MITRE to update Medical Device Cybersecurity Playbook | Nexsen Pruet, PLLC

/in


On November 14, 2022, under contract with the United States Food and Drug Administration (FDA), the MITRE Corporation (MITRE), an organization that administers the National Cybersecurity Center of Excellence, a federally funded research and development center dedicated to cybersecurity, published an update to the Medical Device Cybersecurity Regional Incident Preparedness and Response Playbook (the “Playbook”). MITRE also published a Quick Start Companion Guide to the Playbook, which is shorter than the Playbook and consists of tables that align with the structure of the Playbook. MITRE, under contract with the FDA, had prepared and published the first version of the Playbook in October 2018, which followed the 2017 WannaCry ransomware attack (the first known ransomware attack to affect networked medical devices). Since the publication of the first version of the Playbook, the healthcare and public health sector has experienced an increasing number of cyber incidents. For instance, from mid-2020 through 2021, 82% of healthcare systems reported a cyberattack, 34% of which reportedly involved ransomware. Moreover, 133 healthcare entities in the United States appeared on a ransomware extortion blog in 2021.

The Playbook is a resource designed primarily for healthcare delivery organizations (HDOs), such as hospitals and large physician practices, and can be incorporated into an HDOs’ existing medical device cybersecurity response plan or serve as a starting point for HDOs that have no response plan. The Playbook outlines a framework to assist HDOs, their staff involved in medical device cybersecurity incident preparedness and response, and other stakeholders, such as device manufacturers and other entities that support HDOs’ response efforts, prepare for and respond to medical device-related cybersecurity incidents helping ensure effectiveness of medical devices and patient care and safety. The framework outlined in the Playbook is designed to provide baseline medical device cybersecurity information for emergency preparedness and response; define roles and responsibilities for internal and external responders; describe a standardized approach to response efforts that…

Source…

T-Mobile collaborates with Apple to simplify IT management for small businesses

/in


T-Mobile is joining forces with Apple to introduce a plan JUST for small businesses that tackles pain points they face keeping their business and employees connected.

Available now, Business Unlimited Ultimate+ for iPhone is the first and only wireless plan that makes IT easy for small businesses, pairing Apple Business Essentials with AppleCare+ for Business Essentials, along with a new iPhone 13 for new lines, 200GB of high-speed hotspot data per month, and more.

To start and grow a business, technology is essential. In fact, studies show nearly 90% of companies require their employees to access an average of five mobile business apps every day. But for that to happen, business owners go through many steps, from purchasing the best devices, onboarding and upgrading those devices, keeping them secure and up to date, and configuring apps and settings for each one. It’s A LOT for a small business to handle, but it doesn’t need to be.

That’s exactly why T-Mobile and Apple have teamed up — to make things simpler for all types of small businesses with one amazing plan: Ultimate+ for iPhone. This new plan is packed with a ton of great benefits for small businesses:

  • Each employee who adds a new line on the plan gets a new iPhone 13 — sleek and durable, with super-fast performance and long battery life.
  • Ultimate+ for iPhone is the ONLY wireless plan that enables customers to get the all-new Apple Business Essentials, which combines device management, 24/7 Apple support, and iCloud backup and storage — into a single, flexible subscription.
  • There’s unlimited talk, text, and premium smartphone data on America’s largest, fastest, and most reliable 5G network.
  • This plan includes a whopping 200GB of high-speed hotspot data per month, so small businesses can keep all their devices connected.
  • Customers get unlimited Wi-Fi on select flights from American, Delta, and Alaska Airlines — with more airlines, including United, launching later this year.
  • Finally, this plan helps keep business customers connected in over 210 countries and destinations across the world with unlimited text and data, including 5GB of free high-speed data per month.

All this for just $50 a month…

Source…

Aqua Security Collaborates with CIS to Create the First

/in


BOSTON, June 22, 2022 (GLOBE NEWSWIRE) — Aqua Security, the leading pure-play cloud native security provider, and the Center for Internet Security (CIS), an independent, nonprofit organization with a mission to create confidence in the connected world, today released the industry’s first formal guidelines for software supply chain security. Developed through collaboration between the two organizations, the CIS Software Supply Chain Security Guide provides more than 100 foundational recommendations that can be applied across a variety of commonly used technologies and platforms. In addition, Aqua Security unveiled a new open source tool, Chain-Bench, which is the first and only tool for auditing the software supply chain to ensure compliance with the new CIS guidelines.

Establishing Best Practices for Software Supply Chain Security
Although threats to the software supply chain continue to increase, studies show that security across development environments remains low. The new guidelines establish general best practices that support key emerging standards like Supply Chain Levels for Software Artifacts (SLSA) and The Update Framework (TUF) while adding foundational recommendations for setting and auditing configurations on the Benchmark-supported platforms.

Within the guide, recommendations span five categories of the software supply chain, including Source Code, Build Pipelines, Dependencies, Artifacts, and Deployment (link to blog with overview).

CIS intends to expand this guidance into more specific CIS Benchmarks to create consistent security recommendations across platforms. As with all CIS guidance, the guide will be published and reviewed globally. Feedback will help ensure that future platform-specific guidance is accurate and relevant.

“By publishing the CIS Software Supply Chain Security Guide, CIS and Aqua Security hope to build a vibrant community interested in developing the platform-specific Benchmark guidance to come,” said Phil White, Benchmarks Development Team Manager for CIS. “Any subject matter experts that develop or work with the technologies and platforms that make up the software supply chain are encouraged to join the effort…

Source…

BioConnect collaborates with HID Global to bring authentication to its HID Mobile Access solution

/in


BioConnect announced a collaboration with HID Global to bring authentication to its HID Mobile Access solution alongside a mobile survey option for wellness declaration for employee health status and activity logging.

BioConnect expands the options for HID Mobile Access users with enterprise issued biometrics or multi-factor authentication right from their mobile device with the BioConnect Mobile Authenticator to meet new and more stringent compliance requirements. With BioConnect, HID Mobile Access users can access high-risk spaces, such as data centers, data cages and nuclear facilities.

The BioConnect Mobile App with the HID Mobile Access delivers exact identity assurance with an indisputable and easily available audit trail. System administrators choose how they would like their users to authenticate at each entry point; including two factor authentication with IT trusted authenticators or, for more complex security requirements, with biometrics.

BioConnect gives HID Mobile Access users the power to choose their biometrics – or, for high-security transactions, the enterprise can make the decision with selective modality authentication.

Not only will HID Mobile Access users have additional capabilities to access secure spaces, but they will also be armed with a Health and Wellness Declaration to affirm employee health before entering buildings. This step-up will require users to confirm their current health, allowing access to healthy users and keeping out the risk of users who may have come into contact with the COVID-19 virus.

“Bringing together HID’s world renowned mobile access solution and BioConnect’s enterprise grade biometric authentication platform, customers can be assured that they will be able to support a variety of authentication levels regardless of location, whether that be the front lobby for high-throughput, or the organizations critical data infrastructure, where risk-mitigation and compliance is paramount,” says Pritesh Patel, Director, Trust AI at BioConnect.

“The collaboration with BioConnect underscores our commitment to offering customers a broad range of options for convenient and secure access control. HID Mobile Access continues…

Source…