Phishing Attack Alert and ANTHC System Access Lock OutsJanuary 7th, 2020 by Allison McIntyre
A large number of malicious emails are being sent to ANTHC employees. All employees should use extreme caution when checking email. Tips for what to be on the watch for are included below.
Due to the risk that is created when an employee clicks on a bad link or provides a hacker with information, access to their accounts must be disabled to prevent the risk of further damage. The account must have a password reset and (in some cases) the user’s device must be quarantined and examined. Hackers are not only looking to steal private health information (PHI), but also to infect systems so that the entire ANTHC system (e.g., Cerner, Outlook, HealthCatalyst) could be disabled or disrupted. The above steps are necessary to ensure that our electronic health record and other systems remain protected if someone clicks on a bad link.
If you are locked out, please call IT (extension 2626) to arrange for your access to ANTHC systems to be re-enabled. To avoid disrupting patient care, physicians and other providers will be prioritized among those who have been locked out. Training on phishing attacks is being provided to better educate staff on how to identify malicious emails, which are also known as Phishing Attacks.
Things to watch out for:
- Bad email address (email addresses that do not provide a name, or are from someone unfamiliar)
- Messages that create a sense of urgency or incite fear
- Link redirect – Any hyperlink should be viewed with suspicion
- Implausible pretext or an individual who would not normally email you
- Requests to reset your password and include a link that asks for your username and password
- Requests to enter a username and password to view a document
- No greeting or a strange closing
What should you do if you are suspicious?
- Do not click on any links or open attachments
- Do not enter your username and password or provide personal information
- Click “Phish Alert” in Outlook
Again, if you are locked out, please call IT (extension 2626) to arrange for your access to ANTHC systems to be re-enabled. For questions or to request training, please contact Information Security in Compliance (extension 2699 or 3919)
Thank you for your vigilance in helping protect our systems.