Navigation Links
Staffing Firm Seeks to Validate Security with Penetration Testing; Shocked As High Bit Security Identifies Many Significant Security Vulnerabilities
Date:3/5/2013

Rochester MI (PRWEB) March 05, 2013

A national staffing firm, seeking to comply with government procurement and HIPAA security requirements for contractors and business associates, engaged High Bit Security to perform penetration testing,and was surprised and disturbed by the results.

“The customer had a fire wall, and had taken numerous other steps they believed would make them secure,” said High Bit Security Chief Business Development Officer, Barbara Goushaw. “They engaged us to perform penetration testing (an external and internal IT security assessment of their network, web applications, workstations, servers, printers and wireless systems), in order to obtain the security documentation that clients required. They genuinely expected our testing would prove them to be secure. They were mortified when their report came back with multiple ways that their contractor personally identifiable information (PII) – including names, addresses, social security, drivers license, and health insurance numbers - could have been compromised by a hacker. ”

“Staffing firms/agencies are routinely targeted, given the significant amount of personal information that is contained on their systems,” said High Bit Security Chief Operations Officer, Adam Goslin. “Our 2012 Annual Report showed over 95% of businesses we tested had significant vulnerabilities, and almost all of these companies were running regular vulnerability scanning. There have been numerous recent reports of staffing agencies being hacked, then blackmailed by hackers to prevent public disclosure of the breach.”

“Upon receipt of our penetration testing report, the firms’ IT staff was able to begin immediately to fix the vulnerabilities identified,” said Goslin. “The report detailed what we found, where we found it, what it meant, and specifics on how to fix it. Within just a few days, they came back to us and said they were ready to re-test. Once all of the issues had been remediated and confirmed by High Bit Security certified penetration testers, we were able to provide them with a customer facing report, which did not detail the sensitive information about their environment, but did confirm the timing, high level scope and nature of penetration testing performed, along with the confirmations the client desired.”

“Performing this testing enabled them to include their security commitment in their sales presentation. They have since decided it is in their best interest (and that of their customers / contractors) to implement an annual penetration testing cycle in addition to their other security measures,” said Goushaw. “They no longer wait for clients to demand proof of security testing. Keeping client information secure is now part of their value proposition.”

The complete report of the vulnerabilities identified during this test can be reviewed on the High Bit Security case studies pages along with several other High Bit Security case studies, which anonymously provide details of the testing results of various types of engagements. “We will continue to update this section of the site, as many business owners / managers have no idea just how insecure their systems may be, and we hope our educational efforts take hold before the hackers visit one of our prospective customers,” concluded Goslin.

About High Bit Security:
High Bit Security is a national security services provider, providing penetration testing solutions to clients who need to protect sensitive data in industries such as Healthcare, Credit Card, Financial, or companies that otherwise store Intellectual Property or Personally Identifiable Information. High Bit Security also provides security consulting services to our clients to assist them with their compliance objectives across PCI-DSS, PA-DSS, HIPAA, SSAE-16 or simply wish to perform a security best practices audit of their organization. Contact High Bit Security today for a free consultation to take steps toward protecting your sensitive information. http://www.HighBitSecurity.com 800-757-3144

Read the full story at http://www.prweb.com/releases/2013/3/prweb10460501.htm.


'/>"/>
Source: PRWeb
Copyright©2012 Vocus, Inc.
All rights reserved

Related medicine news :

1. Night Staffing With Critical Care Docs May Lower ICU Death Rates
2. Nurse staffing, burnout linked to hospital infections
3. Barton Associates Announces OB/GYN Locum Tenens Staffing Group
4. Healthcare Staffing Leader, Aureus Medical, Announces Top Online Job Searches for December
5. EMR Staffing Partners Preparing for 25% Increase in Contract Staffing Business
6. FDA Seeks to Limit Antibiotics in Animal Feed
7. Trial seeks to sniff out cancer
8. Electronic data methods research seeks to build a learning health care system
9. Avid Collector Seeks Jimi Hendrix 1968 Electric Factory Philadelphia Concert Poster
10. Eczema Non-Profit Seeks To Shine New Light On Overlooked Condition
11. Wayne State University researcher seeks to understand link between obesity, flu severity
Post Your Comments:
*Name:
*Comment:
*Email:
(Date:5/26/2017)... ... May 26, 2017 , ... Somnoware, a leading provider ... monitor with its Somnoware Sleep Device Interface (SDI). Somnoware SDI is a sleep ... With this platform, initializing devices and importing studies are just one-click operations. This ...
(Date:5/26/2017)... ... May 26, 2017 , ... After raising nearly $30,000 on ... continue to be available at a discounted crowdfunding price on Indiegogo . , ... are, I also wanted to bring a fidget toy to the market that was ...
(Date:5/26/2017)... ... ... “When the Stars Lead Home”: a poignant story of loss, determination, and perseverance. “When ... avid reader who lives in the Pacific Northwest with her husband, daughter, two dogs, ... She couldn’t be more grateful. , Twelve-year old Tizzy could not believe how quickly ...
(Date:5/26/2017)... (PRWEB) , ... May 26, 2017 , ... Water damage ... Lee, New Jersey School District had left education officials with a number of critical ... replacement of the flooring had to be accomplished with little or no disruption to ...
(Date:5/24/2017)... Diego, California (PRWEB) , ... May 24, 2017 ... ... care through innovative medical image management and interpretation, has received U.S. Food and ... , Nucleus.io is a web-based, scalable and secure cloud platform for medical ...
Breaking Medicine News(10 mins):
(Date:5/18/2017)... , May 18, 2017  Two Bayer U.S. Pharmaceutical ... (HBA) during its recent 28 th Woman ... The event showcases HBA,s longstanding mission of furthering the ... healthcare. Cindy Powell-Steffen , senior director ... Radiology division, and Libby Howe , a regional ...
(Date:5/12/2017)... , May 12, 2017  The China and Canada ... technology that consumes less water, energy and detergent, and features a ... product LaughingU, a shoebox-sized washing machine that washes and sanitizes women,s ... ... LaughingU, is compact, and does not require an external water inlet. ...
(Date:5/10/2017)... -- The Corporate Whistleblower Center says, "We are urging ... to call us anytime at 866-714-6466 if they possess ... a substantial scheme to overbill Medicare. We are ... of a medical equipment company if their employer ... practice groups with extra generous incentives to use, or ...
Breaking Medicine Technology: