Healthcare Scam
Healthcare has always been a big target for cybercriminals. With just one breach they can get boatloads of stolen information. In the latest scam, cybercriminals are tricking healthcare workers into handing over their login information. Once they are logged in, cybercriminals will redirect insurance payments into their own account.
Cybercriminals use may different types of scams to gain one’s credentials. They can get them by creating a phishing email where the worker clicks on a link and logs in to a fake website that will send the cybercriminals their login information. Cybercriminals also love to use social engineering tactics to trick people. They will call the IT help desk posing as an employee who can’t get into their account. The help desk will reset the password for them, and cybercriminals then are able to create a new password and gain access to the healthcare organization’s whole system.
TIPS:
- Never click on a link or open an attachment from an unexpected email. If you think the email is legit reach out to the person in a different way to verify.
- This scam is targeting healthcare, but this can happen to any industry.
- Whenever you can, add multi-factor authentication to your accounts. Having at least two ways to verify it really is you logging in helps create more secure accounts.