FBI Issues Dental Patient Data Security Alert

Article

The FBI says that hackers are attacking unsecure file transfer protocol systems in dental practices. Many of these servers, the FBI says, also contain sensitive patient information. The hackers are then using this information to blackmail dental practice owners, authorities say, noting that this type of breach can also lead to malware and viral cyberattacks.

The FBI estimates that more than 1 million FTP servers are unsecure, exposing dentists to potential cyberattacks.

The FBI has issued a cyber security alert that hackers are specifically attacking dental and medical facilities.

The alert indicates that File Transfer Protocol (FTP) servers are the hackers’ target of choice, and that they are attempting to obtain patient data for the purposes of intimidating, harassing or blackmailing practice owners.

RELATED: More Cyber Security News

· Patient Data Breaches Reach Record High, Report Says

· Under Attack: Dentistry Faces Growing Cybersecurity Threat

· 5 Ways to Stop Cyber Crime in its Tracks

Highlighting a 2015 University of Michigan study, the FBI says that more than 1 million FTP servers currently allow anonymous access, potentially exposing protected patient data stored on servers. The FBI explains that anonymous FTP extensions allow anyone access with common usernames, such as “anonymous” or “ftp” without using a password.

Authorities also caution that hackers may attempt to use anonymous access to your FTP server to store malware, viruses, or to mount larger cyberattacks.

“In general, any misconfigured or unsecured server operating on a business network on which sensitive data is stored or processed exposes the business to data theft and compromise by cyber criminals,” the alert reads.

The FBI also issued suggestions on how dentists and other doctors can better protect themselves:

· Dentists should work with reputable IT companies.

· Dentists should have your contracted IT provider check to see if any FTP servers are operating in anonymous mode.

· If your dental practice has a legitimate need for your FTP to be operating in anonymous mode, then you should make sure no sensitive patient data is stored on the server.

Discover more Dentist’s Money Digest news here.

Related Videos
CDS 2024 Midwinter Meeting – Interview with Debbie Zafiropoulos, who discusses a trio of new infection control products from Armis Biopharma.
2024 Chicago Dental Society Midwinter Meeting – Interview with Peter Maroon, business development and sales lead at Spectrum Solutions® on the new salivary diagnostic test, SimplyPERIO.
CDS 2024: Ivoclar's e.max ZirCAD Prime Blocks with Shashi Singhal, BDS, MS
CDS 2024: Diving Deep on J. Morita's New Root ZX3 & HF Module
CDS 2024: What's New at TAG University? with Andrew De la Rosa, DMD
CDS 2024: Breaking Down Barriers to Care with Eric Kukucka, DD
Product Bites – March 8, 2024 Part 2
© 2024 MJH Life Sciences

All rights reserved.