We regret to inform you that we will no longer be publishing Health Data Management. It has been an honor to provide you with the insights and connections to move your career forward. We wish you continued success on your professional journey and welcome you to explore our other titles at www.arizent.com/brands.

Ethical hacker contends info protection relies on simple steps

Kevin Johnson is an ethical hacker helping companies to better understand the real world of cyber attacks. He and his team at Secure Ideas, a security firm, consult and conduct penetration testing, vulnerability assessments and intrusion analysis.

At HIMSS17, Johnson will speak during a presentation outlining certain attacks, why they are successful and simple ways healthcare organizations can protect themselves. Most breaches are very simple, he says; they are mistakes made in response to an attack. Johnson said he plans to discuss four ways attackers get in and steal data, the mistake made to allow that attack to succeed, and how to fix it.

Many organizations do not understand that attacks are not magic but are simple attacks for activism or profit, and it doesn’t require millions of dollars to fix the problem. The answer, Johnson says, is “basic IT hygiene.” He will give simple ways organizations can arm themselves with information that both technical and non-technical persons can use.

“We’ve convinced people that they have to buy products or hire a professional,” he asserts. “But this is obtainable, easy to do and just something we have to do.”

Session CS11, “Once More into the Breach: Real World Attacks,” is scheduled at 10 a.m. on February 21 at Booth 376|Cybersecurity.

For reprint and licensing requests for this article, click here.