Microsoft Hafnium Exploit
March 6, 2021
The recent Hafnium exploit affecting numerous companies running Microsoft Exchange does not directly affect eClaims Workflow. The internal communicatoin and email system is proprietary and does not utilize any Exchange components. However the support and admin email accounts are hosted on a Microsoft Exchange server. This server has been patched and an audit performed to verify that no incursion has occurred.
Solar Winds / Orion Exploits
December 23, 2020
The big news in IT security is the recent Solar Winds hack related to their Orion platform. eClaims Workflow has not installed (past or present) products related to the Solar Winds Orion. We use a small list of third party productcs to ensure the strength in our supply chain, and we combine this with an isolation design, strong encyption, and IDS monitoring to ensure no inappropriate activity occurs on our network. We have not been affected by the Solar Winds breech.
Security Upgrade for eClaimsWorkflow.com
June 29, 2020
As of Aug 31, 2020 we are removing support for legacy technologies such as TLS 1.0 and 1.1 as well as some weak cypher protocols. These technologies were commonly used by older browsers such as Safari 7/8 or out of date installs of Firefox. You can test that your computer supports modern SSL connections like TLS 1.2 by connecting to our test system at https://test.eClaimsWorkflow.com . If the page does not load then your system will require an update in order to continue using eClaims Workflow. Please contact our support group for assistance at email@example.com or by calling 416.226.9948 x4
DR Testing Postponement
April 2, 2020
Due to Covid-19 related issues, we are postponing our disaster recovery testing until June. The DR testing process includes stress testing. We would normally have a tech on standby during this test. However due to Covid restrictions out Toronto Data Centre is on lock down which would make addressing a problem more difficult.We are seeing an increased use of systems such as SecureDocs.ca, but our infrastructure was already built with extra capacity and the added load has not been a problem. All systems are fully functional and once the data centre restrictions have been lifted we will schedule the DR tests.
Canadian Systems Restructure
November 3, 2019
As of Nov 1, 2019 we have removed the disaster recovery site and equipment formerly hosted in Montreal. This decision was made as a cost saving measure — the price of SecureDocs has not changed in seven years and we endeavor to continue to deliver this high quality and inexpensive approach to secure document delivery.
But don’t fear; this does not put SecureDocs systems or users at risk. The Toronto site is a private colo system with diverse internet paths. And we maintain both hot (production) and warm (backup) systems should any equipment failure occur. The Montreal site was originally provisioned to prevent a major electrical failure such as the 2003 Blackout. But this type of event is very unlikely to reoccur and we have battery/generator and redundancies to mitigate any risk should a similar event happen.
This does not apply to eClaims Workflow systems — those are still maintained with primary (hot and warm) system in Toronto and disaster recovery systems in Montreal. Contractual commitments mean this will not change anytime in the near future.
If you have questions or concerns about the changes please contact our support group at 416.226.9948 x4 or email firstname.lastname@example.org