We’re asking for everyone to do their part in staying informed about cybersecurity to protect yourself and SolutionHealth from scammers.
There are many scams out there designed to trick email users into divulging sensitive information. That includes spoofing, the act of disguising a communication from an unknown source as being from a known, trusted source.
Beware of Emails Spoofing Our Domain
While we have many tools in place to try and prevent access to our network, it is possible for an attacker to spoof one of our domains. If they do this successfully, it will not trigger the “External” warning banner at the top of the email. These attempts have been seen in our environment, typically claiming to be from IT and that the recipient must click a link to validate their account. Please note that the IT department will never do this.
Beware of Emails Impersonating Leadership
Another common phishing tactic is to try and impersonate someone of importance within the organization and try to pressure users into either divulging information or performing “quick favors.” These can range from buying gift cards and sending the activation codes via email, to updating an executive’s direct deposit information to a new bank account. If you receive requests like these, never hesitate to report them—the Security team will review and respond as quickly as possible.
When in doubt, report the suspicious message.
If you receive an unexpected email that pressures you to click a link, open an attachment, or provide sensitive information, use the Phish Alert. The Security team monitors these messages and will let you know if the message was malicious or send it back with the “all clear” if it is legitimate.
Did this email come from within SolutionHealth?
If an email came from outside of our network, it will come with an external warning banner. Not having the banner is not a guarantee of legitimacy, but anything external and from an unknown sender should always be treated with caution.
Questions? We are here to help!
Ashley Guerrier, Security Analyst
Dylan Myers, Security Engineer