Get Multifactor Authentication (MFA) now: A vcpi security story

vcpi

vcpi About The Author

October 11, 2019

SM-multifactorauthent

This home care coordination company has been with vcpi for about a year. Our team had helped them deploy equipment and train staff on how to use their new IT system prior to their opening date. Because our client had vcpi as their IT partner, our client’s leadership could focus on their care models and leave the IT needs to us. We currently provide this client with Service Desk support, Mobile Device Management, and software licensing. In the past year, our client experienced a phishing attack via email for which we implemented Multi Factor Authentication.


Vcpi responds to Email Phishing Threat 

This year, our client’s IT systems were attacked by targeted email phishing.

Upon receiving abnormal login alerts for some users, vcpi’s security team immediately executed our Security Incident Response Plan (SIRP). Our internal analysis found that a sophisticated phishing campaign compromised some email accounts, which were used to send mass emails internally. This attack bypassed the client’s current spam and phishing system, so vcpi quickly disabled the compromised accounts and created protective policies to prevent the email messages from internally spreading.

After the cyberthreat was neutralized, vcpi implemented the following measures:

·         Multifactor Authentication deployment for all users

·         Advanced email threat protection platform

·         Mass password reset to disable access to remaining compromised accounts

Results 

Vcpi’s robust security monitoring solutions as well as the threat neutralization have improved the client’s security posture, reduced their operational risk and long-term vulnerabilities. Employees within this organization make fewer calls to vcpi’s service desk for password changes, which increases their productivity.

Why MFA?

Multifactor Authentication requires users to provide two or more forms of identity verification prior to logging in. Vcpi’s MFA solution requires users to combine their username and password with another known factor such as one-time password from a cell phone or token, or their current location (a secured client network). 

Phishing attacks often ask users to enter their credentials into a malicious website and use those credentials to access information systems.  MFA serves makes it harder to access IT systems with stolen credentials, adding an extra safeguard.  Using MFA is particularly important in healthcare, which is an industry highly prone to phishing and ransomware attacks. By adding that extra layer of security, sensitive data such as patient information is protected and ultimately can save lives. 

Contact vcpi to learn more about how MFA can help safeguard your IT systems.

vcpi's Multifactor Authentication Solutions