@brianwhelton If it’s anything like the hospitals I do HIPAA assessments for, they’re flat internal networks with hopefully segmented guest WiFi. Servers are a combo of hospital-owned & systems managed & potentially owned by third parties who can’t or won’t update them w/out FDA re-approval. @brianwhelton IoT devices, like IV pumps and telemetry systems, will be on their own SSID with PSK’s but on the same internal vlan as servers, nursing stations and terminals, and corporate workstations. IoT is rarely updated, and usually only as devices cycle out for repair. Pt care wkstns..

This incredibly useful thread was posted earlier today. All of the posts struck me as Really Good Advice, except this one which set off alarms and sirens in my head. This is more info about why, for the small/indy contractor trying to land gigs. 1/n

https://twitter.com/QuinnyPig/status/1133460562568814592

So, boys and girls and non-binary peeps - grab your smores and gather round the Compliance Campfire cuz we’re gonna talk about one of my FAVORITE subjects – VENDOR PROCUREMENT PROCESSES!

2/n

Dear #ISP and #internet & #tech companies.

Now that the #netneutrality vote has happened, here are my rules as a #consumer and #Customer that I will use to decide who gets my dollar bills.

(thread) 1>$ I will be subscribing to the services and providers who voluntarily maintain the closest model of #netneutrality.

If @Comcast starts charging for prioritized services, I will not only opt for the cheapest and most basic plan possible...

Holy crap. Gemalto's IDPrime.NET cards - the ones they tout being Windows native compatible - are suscept. to factorization.

External Tweet loading...
If nothing shows, it may have been deleted
by @mndell view original on Twitter

1) Researchers have found a process to duplicate a PRIVATE key just from the PUBLIC key. This is big.

And cheap, for a 1024bit key.