Cybersecurity Measures for Medical Institutions: "GMO Trust Login Medical Institution Authentication Enhancement Plan" to Launch March 30, 2026 [GMO GlobalSign]

GMO GlobalSign K.K. (*1) (President and CEO: Katsuo Nakajo; hereinafter "GMO GlobalSign"), a member of the GMO Internet Group, will launch the "GMO Trust Login Medical Institution Authentication Enhancement Plan" on Monday, March 30, 2026. This service is designed to support compliance with the "Guidelines for the Safe Management of Medical Information Systems, Version 6.0."

This plan optimizes cybersecurity measures for medical institutions by combining the existing "SSO Pro Plan" with the "Password Leak Detection" option.

To commemorate the launch, we will hold a limited-time "Authentication Enhancement Starter Campaign," offering a 20% discount on the first-year fees for applications submitted during the campaign period.

(*1) GMO GlobalSign K.K. is a consolidated company of GMO GlobalSign Holdings K.K.

[The Growing Cyber Threat to Medical Institutions] In February 2026, a domestic university hospital suffered a ransomware attack via a VPN used for medical equipment maintenance, resulting in the leakage of patient information for approximately 130,000 individuals. This incident, which led to system failures and significant ransom demands, highlighted that as cyberattacks targeting medical institutions become increasingly severe, the establishment of robust authentication infrastructure—including strengthened ID and credential management—and continuous monitoring systems has become an urgent priority.

Furthermore, the "Guidelines for the Safe Management of Medical Information Systems, Version 6.0" require the introduction of two-factor authentication and the development of mechanisms to continuously verify account security. However, implementing and operating these measures individually presents challenges in terms of operational burden and cost.

This plan is designed to allow medical institutions to implement the necessary authentication enhancements and account monitoring with a simple configuration. This supports the strengthening of cybersecurity in medical institutions without compromising the convenience of daily operations.

[About the "GMO Trust Login Medical Institution Authentication Enhancement Plan"] This plan consists of the "SSO Pro Plan" and the "Password Leak Detection Option."

The "SSO Pro Plan" provides advanced authentication features required by medical institutions, such as desktop SSO via Windows Integrated Authentication, multi-factor authentication (MFA) including one-time passwords and IP restrictions, and biometric-compatible passwordless authentication (Push/FIDO).

The "Password Leak Detection Option" automatically detects leaks of passwords used in addition to the above. With these two functions, medical staff can safely access multiple systems with a single ID and password entry, balancing convenience and security.

《Plan Name》 GMO Trust Login Medical Institution Authentication Enhancement Plan ● Monthly Fee: 500 yen/ID (550 yen including tax) ● Launch Date: Monday, March 30, 2026 ● Target: Medical institutions (hospitals, clinics, pharmacies, etc.) "GMO Trust Login" Price Plan: https://trustlogin.com/price/ Official Website: https://trustlogin.com/

[About the "Authentication Enhancement Starter Campaign"] To commemorate the launch of the "GMO Trust Login Medical Institution Authentication Enhancement Plan" and to promote cybersecurity measures for medical institutions, we will hold a limited-time "Authentication Enhancement Starter Campaign."

《Campaign Name》 Authentication Enhancement Starter Campaign ● Period: March 30, 2026 (Mon) – April 30, 2026 (Thu) ● Details: 20% off the first-year fee for applications submitted during the period ● Target: Medical institutions (hospitals, clinics, pharmacies, etc.) that subscribe to the "GMO Trust Login Medical Institution Authentication Enhancement Plan" ● Special Site: https://trustlogin.com/lp/medical

[Strengthening Security Measures in Medical Institutions Amidst Regulatory Revisions] With the medical fee revisions for fiscal year 2026, cybersecurity measures have become a mandatory institutional requirement alongside the promotion of medical DX. In particular, additions related to electronic medical information linkage are predicated on the implementation and operation of measures based on the 6.0 version of the guidelines. The previously established grace periods have ended, and the industry has entered a phase where not only the submission of plans but also the actual installation and operation of systems are being verified.

Additionally, public budgets to support cybersecurity measures for medical institutions have been secured for fiscal year 2026, creating an environment where medical institutions can more easily engage in full-scale security measures.

In response to these changes in systems and the environment, we are providing this plan as an authentication measure that medical institutions can realistically implement and operate.

<Service Overview> [Table omitted for brevity, covering Service Name, Fees, Basic Functions (Free), Paid Functions, International Standards, and Application Method]

(*2) As of March 2, 2026. (*3) A logo mark granted by the Japan Institute for Promotion of Digital Economy and Community (JIPDEC) to businesses that have established appropriate protection systems for personal information. Certified businesses are permitted to use the mark in their business activities. (*4) A feature of Windows Server developed by Microsoft, which is a mechanism that can aggregate and manage user information and permissions for various systems existing on a network in an on-premises environment.

[Inquiries regarding the service] GMO GlobalSign K.K. Trust Login Division, Obara TEL: 03-4545-2308 E-mail: support-jp@globalsign.com