Interlink Cloud Blog

Interlink Cloud Blog

Welcome to the Interlink Cloud Blog

All content provided on this blog is for informational purposes only. The owner of this blog makes no representations or warranties regarding the information from our partners or other external sources.
Matt Scherocman

Is Office 365 HIPAA Compliant?

Yes. Microsoft® Office 365 provides all the capabilities you need to satisfy the technology requirements for HIPAA and HITECH compliance. These regulations require that organizations establish and document procedures that govern:hipaa compliant2

  • Restrict access to patient data.
  • How patient data is handled.
  • How stored patient data is kept secure.
  • How to secure patient data when it’s transmitted.

Meeting these general guidelines requires lots of time and attention to detail. Office 365 helps you meet these requirements with less time and cost than you might think.

Continue reading
  12938 Hits
  0 Comments
Eric Brophy

What is the HeartBleed Vulnerability?

In recent days we have had a lot of questions from clients who were concerned their information may have been compromised in Office 365 by the HeartBleed vulnerability.  This flaw allows intruders to read server memory which would contain usernames, passwords, credit cards, or any other confidential information that may be on the server running OpenSSL.  We wanted to take a minute to reassure you that Office 365 and out of the box Microsoft configurations are not affected. 

The Heartbleed vulnerability is specific to OpenSSL which is not being used for any Microsoft Office 365 services.  In fact, all Microsoft servers (Windows Server 2003 through Windows Server 2012 R2) do not utilize OpenSSL out of the box and use their own encryption component called Secure Channel (or SChannel which you may have seen errors in your event log for).  Unless you have installed Apache or some other third-party application that uses OpenSSL on your Windows Server, you should be fine.  Microsoft will continue actively monitor the security of Office 365 with threat modeling and attack surface analysis.  We continue to believe security is a benefit of the Microsoft cloud services that goes above and beyond what a typical business can do and it is not a weakness. 

For additional information please reference this article from Microsoft

Continue reading
  3842 Hits
  0 Comments

Welcome to the Interlink Cloud Blog

All content provided on this blog is for informational purposes only. The owner of this blog makes no representations or warranties regarding the information from our partners or other external sources.