Do your due diligence Even worse, sometimes they might hack your IT vendor: Remember that IT companies are not cybersecurity companies. You often need the knowledge and expertise of a specialist in cybersecurity to help ensure the security of your network. Hackers can scan your network for vulnerabilities in a matter of minutes, then identify and exploit these vulnerabilities in order to gain access. This approach in the dental space is much more common than you may imagine. The FBI and Department of Homeland Security posted a bulletin in the fall of 2018, warning IT vendors that advanced persistent threat actors-often known by the initials APTs-are targeting IT firms to exploit their information to attack their clients. Because IT vendors typically store their clients' IP addresses, usernames and passwords in their databases, a breach could give cybercriminals the "keys to your castle." Make sure to take defensive measures to help protect your network and critical patient data. It's important to work with a qualified cybersecurity company that can: 1. Perform an audit of your existing policies and procedures. 2. Provide you with quarterly vulnerability scans of your network. 3. Conduct live employee training to educate your staff on the latest threats and learn how to prevent them. 4. Have penetration testing conducted on your network. It's important to understand that the days of simply relying on firewalls and antivirus software to keep hackers out of your network are over. The good news: If you take action now, you can reduce the odds of being the next victim of a cyberattack. ■ dentaltown.com \\ SEPTEMBER 2019 95http://www.dentaltown.com