Skip navigation

Beware of the Dark Side: Security in the Age of IoLT

Christopher Waller

VP, Chief Scientist, EPAM United States
Blog
  • Life Sciences & Healthcare

The Digital Lab Poses yet another Entry Point for Cyberattackers

It is difficult to underestimate the potential for dark-sided cyberattacks as we make the move to a digital research laboratory powered by technology that runs on the Internet of Lab Things (IoLT). All those little data collection devices pumping data into cloud stores create huge vulnerabilities on company networks and should be causing all CISOs nightmares.

In July of last year, Merck, along with a number of other large corporations that rely heavily on computer networks, was crippled by a cyberattack containing the NotPetya virus that resulted in the disruption of all research and development, manufacturing and commercial operations for several months. Tens of thousands of computers were compromised and required complete rebuilds in order to bring things back to a normal state. The full financial impact suggests that the attack cost Merck in excess of $300M per quarter in the second half of 2017.

The Merck cyberattack was perpetrated through a traditional simple email attack vector. IoLT devices represent newer and more numerous entry points into a corporate network and will dramatically increase the probability of cyberattacks on the digital laboratory. While the Merck cyberattack was a typical nuisance attack with a ransom demanded in order to unlock drives, the cybercriminal of the future will combine this with other methods in order to gain access to the corporate jewels – data. 

A Simple Plan to Manage – and Prevent – Sneaky Cyberattacks

So, what do we do to protect ourselves against cyber criminals planting little worms on corporate computers that leak data through the firewall at almost imperceptible levels? The inevitable cyberattacks that come as a result of digitalization need to be dealt beyond following technical analysts’ recommendations to stockpile cash in order to deal with the aftermath. To become proactive, one simple grouping of tactics could be:

  1. Intrusion prevention
    • Provide and enforce employee training and certification
    • Implement modern firewalls with current anti-virus software and definitions
    • Ensure that all operating systems on all computers are current
  2. Intrusion detection
    • Implement proactive network activity monitoring and isolate suspicious code
    • Utilize AI to identify network data spikes
  3. Intrusion remediation
    • Ensure that disaster recovery plans are current and enforced

On paper, the 68-word plan above sounds simple, but that doesn’t mean it will be straightforward to implement.  

Forging a Path toward a Cybersecurity-First Culture

There will obviously be challenges that must be overcome as we work to create and protect the digitalized life sciences ecosystem of the future. Since this ecosystem doesn’t exist yet for the most part, however, there is a big opportunity to do things right the first time around.

As always, the challenges fall into people, process and technology buckets. At the highest level, change management programs with senior leadership sponsorship will be required, and cybersecurity-first culture will need be cultivated within the organization. All existing security processes will need to be scrutinized and, in many cases, modified. Additionally, improvements to our legacy technology footprints will need to be made, often with the help of a trusted technology partner.

However difficult, all of these changes will be required if we are to fully reap the benefits of digitalization and protect our data – a tremendous asset that is soon to be overflowing from your soon-to-be digital lab. That’s why we’ll explore the value of data to a corporation and the need to protect it properly in the next installment.

Hello. How Can We Help You?


Our Offices

  • Canada

    • Ottawa

      343 Preston Street,
      ON K1S 1N4, Ottawa
      Canada

      Map
    • Toronto

      5 Park Home Avenue,
      Suite 400,
      ON M2N 6L4, North York,
      Toronto
      Canada

      Map
      F: +1-416-595-1551
  • Mexico

    • Guadalajara

      Periférico Sur #8110,
      Col. El Mante
      45609 Tlaquepaque, Jalisco
      Mexico

      Map
  • United States

    • Newtown, PA

      41 University Drive,
      Suite 202,
      Newtown, PA 18940
      USA

      Map
      F: +1-267-759-8989
    • Bellevue, WA

      110 110th Ave. NE,
      Suite 310
      Bellevue, WA 98004
      USA

      Map
    • Boston, MA

      21 Drydock Avenue,
      Suite 410 W,
      Boston, MA 02210
      USA

      Map
    • Conshohocken, PA

      101 East 8th Ave,
      Suite 201,
      Conshohocken, PA 19428
      USA

      Map
    • Los Angeles, CA

      11601 Wilshire Blvd,
      Suite 350,
      Los Angeles, CA 90025
      USA

      Map
    • New York, NY

      24 West 25th Street,
      5th Floor,
      New York, NY 10010
      USA

      Map
      F: +1-267-759-8989
    • Philadelphia, PA

      30 South 15th Street,
      9th Floor,
      Philadelphia, PA 19102
      USA

      Map
    • San Francisco, CA

      222 Kearny Street,
      Suite 308,
      San Francisco, CA 94108
      USA

      Map
    • San Jose, CA

      2055 Gateway Place,
      Suite 510,
      San Jose, CA 95110
      USA

      Map
    • Washington D.C.

      7901 Jones Branch Drive,
      Suite 400,
      McLean, VA 22102
      USA

      Map
  • Australia

  • China

    • Guangzhou

      Unit B01, 23/F,
      Yuexiuxinduhui Building,
      No. 236, 6th Zhongshan Road,
      Yuexiu District, Guangzhou,
      China 510180

      Map
    • 广州

      中国广州市越秀区
      中山六路236号
      越秀新都会大厦中座 23楼 B01室
      邮编510180

      地图
    • Shanghai

      Room B509, 5th Floor,
      48 Weihai Road,
      Huangpu District, Shanghai,
      China 200000

      Map
    • 上海

      上海市黄浦区
      威海路48号
      5楼B509室
      邮编200000

      地图
    • Shenzhen

      3/F, Block 5, Vision Shenzhen Business Park,
      9th Gaoxin South Road, 
      Shenzhen Hi-tech Industrial Park,
      Nanshan District, Shenzhen,
      Guangdong, China 518057

      Map
    • 深圳

      中国广东省深圳市
      南山区高新南九道
      威新软件园5号楼3楼
      邮编518057

      地图
    • Suzhou

      Building 12, Creative Industrial Park,
      328 Xinghu Street,
      Suzhou Industrial Park,
      Suzhou, China 215123

      Map
    • 苏州

      中国江苏省苏州市
      苏州工业园区星湖街328号
      创意产业园内12号楼
      邮编215123

      地图
  • Hong Kong

    • Hong Kong

      26F&17F, The Wellington Tower,
      198 Wellington Street,
      Central, HK

      Map
  • India

    • Bangalore

      Smartworks,  
      Global Technology Park,
      Block C, Outer Ring Rd,
      Adarsh Palm Retreat, Bellandur,
      Bengaluru, Karnataka 560103
      India

      Map
    • Hyderabad

      10, 11 & 12th Floors,
      Salarpuria Sattva Knowledge City,
      Plot No. 2, Phase - 1,
      Survey No. 83/1,
      Raidurgam Village,
      Serilingampally Mandal,
      Hyderabad, Telangana - 500081
      India

      Map
    • Pune

      SmartWork Business Center Pvt Ltd,
      Suite 8, Level 1,
      West Wing, Nyati Unitree,
      Samrat Ashok Road,
      Yerwada, Pune - 411006,
      Maharashtra
      India

      Map
  • Japan

    • Tokyo

      Floor 1-10-11
      Shibadaimon Centre Building 10th
      Shibadaimon Minato-ku
      Tokyo 105-0012
      Japan

      Map
      F: +81-03-6880-9201
  • Singapore

    • Singapore

      5 Shenton Way
      UIC Building, #10-01,
      Singapore (068808)

      Map
  • United Arab Emirates

    • Dubai

      EPAM Systems FZ-LLC Dubai Branch
      2307 Arenco Tower, Dubai Media City
      PO Box 501929 Dubai
      United Arab Emirates

      Map