(They installed a root cert on machines, meaning that you were effectively transferring clear text over the wire for ill-defined time.)
-
-
-
.
@patio11 Superfish decrypts SSL, but reencrypts it with proper certificate before it leaves the machine. There is no cleartext on the wire. - 1 more reply
New conversation -
-
-
@greentiger74 All on the healthcare org.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@patio11 Security incident, rather. Definition of breach involves confirmed "acquisition, access use, or disclosure" (see 45 CFR 164.402)Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@patio11 Confirming Superfish package and root cert are present == yikesThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@patio11 What's the penalty for not reporting a breach?Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@patio11 many are saying SSL and cert model is breaking down, agree? Is it the model or poor practice/practitioners becoming complacent?Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@patio11 you do realize that many if not most business computers and mobile pcs used in healthcare are Lenovo rightThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@patio11 It isn't clear, but it may not have involved their ThinkPad lineThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@patio11 only on the models that actually had Superfish. Looks to be all business models safeThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.