Cybersecurity Updates

Following are recent cybersecurity reports from Valley’s Information Security team. For additional cybersecurity advisories, please visit the Information Systems’ Cybersecurity page on the intranet.

Thank you for your commitment to being cyber-aware and for helping Valley maintain and safe and secure IT environment.

Cyber-Physical Attacks

Cyber attacks do not always have to come from the Internet. Cyber criminals may want to get physical access to a restricted area without being noticed. They do so by tailgating & piggybacking.

Tailgating attackers can fool people by pretending to be someone else, just like phishing or pretexting. For instance:

  • Walking behind employees as they open doors
  • Pose as a courier or delivery driver
  • Claim to have 'forgotten their ID'
  • Pretend their hands are too full to open doors

Similarly, piggybacking occurs when an authorized individual opens and holds the door for someone who may or may not have the proper rights.

How to prevent tailgating and piggybacking:

  • Don't tailgate - Always present your badge
  • Discourage others from tailgating - Politely ask others to present their badge. Your badge is for your access only!
  • Ask others to show they belong at Valley or VMG by wearing their badge.
  • If you see something, say something. Report all unusual and suspicious occurrences (in real time, if possible) to your supervisor or building management:
    • The Valley Hospital: 201-447-8290
    • Luckow Pavilion: 201-815-1054
    • Kraft Building: 201-291-6397 or 201-447-8290
    • All other locations: Check with your building management

Russian State-Sponsored Cyberthreats

As the crisis in Ukraine continues to escalate, it is likely that Russia’s aggressive cyber activity will increase and spread beyond their initial Ukrainian government, military, energy, and financial targets.

US is currently on high alert for the possibility of cyberattacks targeting critical infrastructure inside the US that can disrupt essential services and impact the public safety, including the Healthcare sector.

We ask that you remain vigilant as cyberattacks increase by adhering to the following best practices:

  • Secure your accounts by using a strong passphrase (preferably 16 or more characters long).
  • Enable Multi Factor Authentication wherever possible – on systems used at work and at home.
  • Use different passwords for your personal and Valley accounts
  • Stay alert for phishing emails.
  • Recognize and avoid phishing scams.
  • Never provide your Valley or personal credentials (login or password).
  • Do not click on suspicious or unexpected links or attachments unless you independently validated it.
  • Forward suspicious emails as attachments to [email protected].
  • Reporting unusual activity to IS Service Desk or the Information Security team.
  • Use Valley’s HRO tools – STAR: Stop, Think, Act, Review or Validate and Verify

Thank you for helping to keep our network, and our people, safe from these cyber threats.

Submissions

Please send your articles/ideas to [email protected] for consideration for inclusion in Physician's Feed.