
MV Customer
Story
Filling an
Immediate Security
Hole
.webp)

MV provides complete, end-to-end digital healthcare solutions and operates a B2B business model. There are about 2 thousand institutions using MV solutions to deliver efficiency, agility, precision and security in the provision of healthcare services.
Amongst MV’s many mobile apps, the Medic MV app is at the heart of the demand for solutions which can deliver a service which has the maximum flexibility for physicians. It facilitates access to patient information inside and outside of the point of care in order to decrease the difficulty of accessing required medical records, increase the efficiency of communication and facilitate the highest quality of medical workflow.
Getting the app and API protection wrong in the MV Medic app was not an option. The recent Brazilian Personal Data Privacy Regulation (LGPD) legislation means that our healthcare institution customers could suffer from significant fines if we didn’t meet our security goals.
'- Tiago Calado, Software Development Manager, MV'

The Challenge
Even though they had already implemented many security mechanisms in the app and at the API endpoints, the sensitivity of the Protected Health Information (PHI) accessible from the apps demanded that additional security measures would need to be implemented before the MV Medic app could be deployed at scale.
How Approov Mobile App Protection Helped
The team took on board the pentesting results and set about the task of finding a suitable protection system which would ensure that only genuine and unmodified mobile app instances could access sensitive data such as PHI via the API.
MV tried Approov, measured how much bad traffic it could reject, and deployed the new security layer. Further pentests proved that the previously identified weakness had been fixed and that production release of the mobile app could go ahead as planned.
Tiago recommends:
Approov plugged an immediate API security hole which pentesting had exposed in our platform, and we calculate that the adoption of Approov will bring us a 10x RoI considering lost sales and the cost of an internal development. In fact we are so convinced by the need for leading edge security that we are now planning to add Approov into all of our healthcare apps.
Read on


Public Comments Analysis on HIPAA Security Rule Amendment for Cybersecurity
Major cybersecurity breaches continue to plague the US healthcare industry, and on December 27,...

Enhancing Mobile Payment Security: A Comprehensive Approach with Approov
Mobile payment systems are increasingly popular, offering convenience and speed for consumers and...

Why the OWASP Mobile Application Security Project is Critical
The OWASP MAS project continues to lead the way in mobile application security. This article...

The UK NHS API Flaw: A Wake-Up Call for Mobile Security
A recent vulnerability discovered in an UK National Health Service HS API has once again...


Empowering Mobile Payments: Approov's Security and PCI MPoC Mastery
In the ever-evolving landscape of mobile applications, especially those dealing with sensitive...

How Does Your App Rate Against the 2024 OWASP Mobile Top Ten Risks?
In case you didn't notice, the OWASP Mobile Top 10 List was just updated, for the first time since...

Approov’s Resolution for the New Year is Securing your Healthcare Data
Data breaches involving the healthcare industry can have serious consequences, as they can...
Request a Demo
Give us 30 minutes and our security experts will show you how to protect your revenue and business data by deploying Approov to secure your mobile apps and your.
Get a Trial
Approov offers a complimentary 30 day trial (no credit card necessary) to give you immediate and valuable insight into the security risks of your mobile apps and the devices they run on.