Breach Security Protects Online Medical Data for Major Healthcare Provider in Israel

BreachGate WebDefend™ secures Leumit’s web application used by Doctors and staff to access medical records; online patient scheduling planned

CARLSBAD, Calif., September 12, 2006 – Breach Security, a leader in the emerging market for intelligent web application security, today announced that Leumit Health Fund, one of Israel’s largest medical healthcare providers, is using a BreachGate WebDefend web application security appliance to secure its heavily used internal Web application that supports 370 locations and 700,000 patients in the State of Israel. Leumit will expand the WebDefend deployment to add protection for additional Web applications transmitting sensitive patient information.

Leumit’s Web application secured by the WebDefend appliance currently serves more than 4,500 users including 1,500 Doctors, nurses, and administrators that track patient records, insurance and care online. Leumit is planning to provide its patients with a web portal for setting doctor appointments, accessing lab results, and retrieving medical histories which will also be protected by the WebDefend appliance. The WebDefend appliance will scale to secure both the internal and patient web applications while serving tens of thousands of concurrent users.

Leumit Health Fund provides some of the most advanced and personalized health services and health education for its patients. The organization’s IT department was very concerned about vulnerabilities to its web application which led to researching options that best supported its corporate data center and protected the application from outside hackers. Leumit is also taking steps to promote the security of its patient web application to encourage patient use.

“Leumit selected WebDefend to ensure that privileged member information, such as patient identities and lab test results, are kept private and secure. We were very concerned about data leakage and identity theft that could result from hacking attacks to our confidential hospital application,” said Avishai Shlishkovitch, CIO, Leumit Health Fund. “Network firewalls and intrusion detection and prevention systems did not meet our security requirements. With WebDefend, our web applications are secure and available to serve our members when they need our help.”

The BreachGate WebDefend™ application security appliance is the industry’s only out-of-line web application security appliance that combines non-intrusive deployment, ease-of-use, and comprehensive security with the industry’s lowest total cost of ownership. WebDefend’s comprehensive blocking protection and automated application profiling technology allows IT departments to focus on actual security instead of configuring and managing security tools.

“WebDefend continues to be the web security appliance of choice for large organizations in Israel and around the world,” said Marc Shinbrood, president and CEO, Breach Security. “Securing an individual’s private medical records is a growing healthcare concern worldwide as more hospitals and healthcare systems turn to the web to improve patient care and cut rising healthcare costs. The BreachGate WebDefend monitors Leumit’s patient web application based on how the application is used and alerts the IT staff to coding errors that can either be a source of a security breach or inhibit application availability.”

About BreachGate WebDefend

Business and organizations that only use network firewalls and intrusion detection appliances for securing the network perimeter are not prepared for a new generation of attacks targeted at corporate web applications. The BreachGate WebDefend secures the next-generation of web applications by automatically building and maintaining targeted application security parameters used to validate all communication with the web application. Traffic that doesn’t match the application’s profile is routed through collaborative detection engines that lock out anomalous traffic to verify the type of attack taking place and employing appropriate countermeasures.

WebDefend’s ExitControl™ technology monitors outgoing responses from web applications and employs BreachMarks™, or patterns used to detect content-critical data, such as credit cards and social security numbers, from leaving the corporate network. The BreachGate WebDefend appliance is an ideal addition to an organization’s B2B and B2C Internet security.

About Breach Security, Inc.

Breach Security, Inc. is a leading provider of next-generation web application security that protects corporate-critical information. Breach effectively protects web applications of commercial enterprises and government agencies alike against Internet hacking attacks and provides an effective solution for expanding security challenges such as identity theft, information leakage, and insecurely coded applications. Breach’s solutions are ideal for any organization’s regulatory compliance requirements for security.  Breach was founded in 2004 and is headquartered in Carlsbad, Calif. For more information visit: www.breach.com.

# # #

Media Contacts:

Breach Security, Inc. U.S.

Dan Chmielewski, Principal
Madison Alexander PR, Inc.
dchm@madisonalexanderpr.com
(949) 231-2965