Put it further away, take it closer

1 May 2024

How to secure corporate data from internal attackers?

In Kyiv, medical laboratory workers stole information about doctors and clients

In the capital of Ukraine, two employees of a famous medical institution will soon face justice. They are accused of stealing confidential information about doctors and patients with the aim of using it to blackmail management for monetary gain.

In accordance with the legislation of Ukraine, the protection of confidential data is the responsibility of its holder. To avoid incidents like the above, it is necessary to protect the stored data, for which we recommend using several methods.

  1. MFA systems (multifactor authentication) – determining the circle of trusted persons.

Ensures correct authentication and authorization of users with access to protected data. Accounts should be protected with complex passwords, and authentication should use no less than two-factor algorithms.

  1. Access control systems to services and resources.

Strict access procedure checks with verification attributes not only for user, but also for his workplace (up-to-date security software updates, etc.). Access is granted to the minimum necessary data, for example, not to the entire disk, but to an area or specific folders, or only to authorized services.

  1. PAMPAM systems – control of the privileged users work.

Privileged users have access to critical information (for example, system administrators). The actions of such users should be constantly recorded, checked for non-standard behavior or non-standard access. The system must track if an employee logged into the system after work hours or from outside his workplace, did not enter the password on the first try, or tried to access protected resources outside his competence. In addition, there should be a database of access attributes that will allow authorized persons to restore access to data in the absence of the account owner.

  1. LOG systems – logging and recording of actions.

User actions must be recorded and stored in special logs for subsequent investigation of the incident and preparation of the evidence base.

Protecting corporate data is a complex process that requires a multifaceted approach. Experts AM Integrator will provide qualified consulting support and select the optimal solutions in accordance with your needs.

News source: https://www.stopcor.org/ukr/section-suspilstvo/news-u-kievi-pratsivniki-medlaboratorii-vikradali-informatsiyu-pro-likariv-ta-klientiv-05-04-2024.html

📷
Тенденції розвитку систем накопичення електроенергії: виклики, технології та перспективи 📷
📷
Читати більше новин
EN