Archives     Advertise     Editorial Calendar      Advertiser Index     Subscribe     Contact Us    


NMGMA: 10 Minute Takeaway


 
Teddy Ansink

The second Tuesday of each month, practice managers and healthcare industry service providers gather for the monthly Nashville Medical Group Management Association (NMGMA) meeting.

During the March luncheon, Teddy Ansink with Sword and Shield discussed 'Why Social Engineering Succeeds' and what that might mean for companies trying to keep information from being compromised. Ansink started out by defining social engineering as: "The use of deception to manipulate individuals into divulging confidential or personal information that may be used for fraudulent purposes."

As part of his work, Ansink will often try to gain physical access to a client's offices to see what areas can be breached and what information he can retrieve. Once inside, he said it's often easy to walk into empty offices and snap photos of paperwork left on desks.

There are a variety of ways he accesses areas where he shouldn't be from 'tailgating,' which is going in right behind someone, to stepping on an elevator or walking up to a back area with his hands full and having someone push a button or open a door for him. "Employees have a desire to be helpful. This is one of the problems," he said with a smile.

He noted that between websites and LinkedIn, it's easy to find the names of key staff members to casually drop into conversation and make his visit appear legitimate. "Getting someone to challenge a person they don't recognize can be difficult," he noted, saying most people either don't want to approach a stranger or want to be helpful if they do.

The mindset, he suggested, needs to shift from 'challenging' someone to 'meeting a new person.' If an unrecognized individual tries to access a private area, a few friendly questions or checking the schedule could quickly ascertain whether the visit is legitimate and actually be helpful to the guest. If the story doesn't check out, then the employee should escort the visitor to a public area and report the incident.

Malware, phishing, baiting and other tactics also often succeed because employees are trying to be helpful. Ansink said emails from bad actors purporting to be from a boss are a tricky way to obtain sensitive information since most employees act quickly to fulfill a request from a supervisor. The simple solution is to verify the request is authentic, particularly if the required data includes private information on patients or clients.

In addition to targeted training to thwart attempts at social engineering, Ansink advocated for restricting peripherals, adopting a clean desk policy when staff members leave their work areas, and empowering employees to question unknown people in private or restricted areas of the practice or office.

NMGMA Spring Social

In lieu of a regular April meeting, NMGMA is hosting a networking event on Tuesday, April 24 from 5-7 pm at KraftCPAs in MetroCenter. The social event is a great time to meet and mingle with NMGMA members to learn more about the organization. Practice administrators interested in attending should contact NMGMA President Joy Testa, joytesta@bellsouth.net, to RSVP.

WEB:

NMGMA

Sword & Shield Enterprise Security

 
Share:

Related Articles:


Recent Articles

Blackburn, Duckworth Lead Bipartisan Legislation to Improve Lives of People with Limb Loss

U.S. Senator Marsha Blackburn (R-Tenn.) introduced bicameral, bipartisan legislation along with Senator Tammy Duckworth (D-Ill.) to improve health outcomes for individuals living with limb loss or limb differences.

Read More

Method Proposed to Correct Misinterpretations of Long-Term Survival Rates for Immunotherapies

Immune checkpoint inhibitors have transformed cancer care to the point where the popular Cox proportional-hazards model provides misleading estimates of the treatment effect, according to a new study published April 15 in JAMA Oncology.

Read More

Blackburn, Durbin Introduce Legislation to Improve Rural Health Care

U.S. Senator Marsha Blackburn (R-Tenn.) along with Senators Dick Durbin (D-Ill.), Lisa Murkowski (R-Ala.), and Tina Smith (D-Minn.) introduced the bipartisan Rural America Health Corps Act. Representatives Cheri Bustos (D-Ill.) and David Kustoff (R-Tenn.) introduced companion legislation in the House of Representatives.

Read More

AHA Statement On Senate Passage Of Medicare Sequester Relief Legislation

Read More

Crucial Behavioral Health Bill Introduced

Reps. Dan Kildee (D-Mich.) and Brad Wenstrup (R-Ohio) introduced their bipartisan bill, the Rural Behavioral Health Access Act.

Read More

New Analysis Shows Continued Negative Impact Of COVID-19 On Hospital & Health System Financial Health In 2021

A new analysis prepared by Kaufman, Hall & Associates, LLC and released by the American Hospital Association (AHA) highlights the ongoing consequences of the COVID-19 pandemic on the financial stability of hospitals and health systems, threatening their ability to continue to provide essential services to their patients and communities.

Read More

NAACOS Asks HHS Secretary Xavier Becerra to Grow Medicare ACO Programs

Letter Recommends National Goal to Have a Majority of Traditional Medicare Beneficiaries in an ACO by 2025

Read More

Luck of the Irish

Read More

Artificial Intelligence Calculates Suicide Attempt Risk

A machine learning algorithm that predicts suicide attempt recently underwent a prospective trial at the institution where it was developed, Vanderbilt University Medical Center.

Read More

Pre-term Births in Tennessee Decreased During Pandemic

Statewide stay-at-home orders put in place as Tennessee fought to control the spread of coronavirus last March were associated with a 14% lower rate of preterm birth, according to a research letter published today in JAMA Pediatrics.

Read More

Email Print
 
 

 

 


Tags:
Nashville Medical Group Management Association, NMGMA, Phishing, Security Breach, Sensitive Data, Social Engineering, Sword & Shield Enterprise Security, Tailgating, Teddy Ansink
Powered by Bondware
News Publishing Software

The browser you are using is outdated!

You may not be getting all you can out of your browsing experience
and may be open to security risks!

Consider upgrading to the latest version of your browser or choose on below: