As one of the UKs leading Cloud-based practice management software providers for the medical sector, the security of the data held on our servers is of the highest importance to MidexPRO.
We have been registered with the ICO since 2002, and we are GDPR compliant. We are also registered and published with the NHS Data Security Protection Toolkit (DSPT) and have been assured by Cyber Essentials since 2019, with renewals carried out each year.
As has been starkly evident from the recent attacks seen in the National news, hackers carry out cyber-attacks daily and no business is off limits.
Such headlines highlight the potential risks to our personal data meaning we must be even more vigilant in the steps we take to avoid becoming a victim of such an attack.
As we remain on high alert, we want to promote some of the recommended advice provided by Cyber Essentials and the National Cyber Security Centre.
Malware (malicious software) is software or web content that can harm your organisation. The most well-known form of malware is viruses, which are self-copying programs that infect legitimate software.
Most of us will have had experience of a virus sent in the hope of that all-important click which provides access to the hacker. Many of us ae also aware of Phishing emails that attempt to steal sensitive data.
Below are some simple things we can all do to protect ourselves.
Anti-virus software – adding a defence to your software against an online attack is to install an anti-virus software like Windows Defender or other similar versions to slow down an attack.
Firewalls – these create a ‘buffer zone’ between your own network and external networks (such as the Internet). Many of the popular operating systems include a firewall, so it may simply be a case of switching it on.
Patching – Ensure all your IT equipment, including tablets, smartphones, laptops and PCs is kept up to date with the latest software and firmware. This is known as patching, and it is one of the most important things you can do to improve security. Inevitably these updates will cease to be available as a product reaches the end of its supported life and at this time consideration should be given to sourcing a modern replacement.
IT Policies – ensure robust policies for staff are in place covering the rules relating to the use of USB drives and the downloading of certain apps to help keep the organisation secure.
Multi-Factor Authentication – we encourage all MidexPRO users to use Multi Factor Authentication which is a security protocol requiring users to provide two or more forms of identification to access accounts or systems, which in turn significantly strengthens security beyond just a password.
How does ‘Multi-Factor Authentication’ work? Once enabled, ahead of access, MidexPRO software sends a code via email to the registered User on the Account to input prior to entry.
This combined with the individual Access information known only to the User, makes any hack, even more difficult. Very easy to switch on and completely FREE.
Contact support@midexpro.com to enable this feature.
Passwords – always ensure strong and unique passwords are used and do not share password information with anyone.
The combination of three random words as a password has become much more common place in recent years and it is a strategy used by MidexPRO. Using three random words makes it much more difficult for hackers and yet it remains easy enough to remember.
The three words don’t have to be too complicated or obscure, and each word can of course mean something to you (but please do avoid family or pets’ names). In addition, the words can be interspersed with numbers and can include capital letters, which makes it even harder for a hacker to gain access.
Here is an example, based on the above:
‘Friday3Crisps9Pienza’
You could use your favourite flowers, cars, holiday destinations or animals, etc, which makes the combination options vast, and this is the reasoning behind the strategy.
Whatever you decide, please do remember to make your password difficult to guess, keep it to yourself and change it regularly.
By now, we all know that using Password123 is not a good choice, so please avoid this and other obvious or commonly known words or phrases, so that you do not make it easy for hackers to access your data.
For further details on how to protect yourself and or your business from cyber threats, here are links to two very insightful websites.
National Cyber Security Centre
MidexPRO is the definitive medical practice management system that can facilitate your Clinical needs whatever your speciality may be.
Did you know, MidexPRO offer a Free 30-day Trial of the full system?
For more information about us please:
- Visit our website MidexPRO.com, or
- Contact us on 0330 999 3399 or support@midexpro.com