It’s no secret that the healthcare industry is the most targeted sector by Cyber criminals. Email fraud is one of the most popular ways of trying to exploit weaknesses in security as this relies on a simple human error. It can be quite easy to fall for fake emails when you’re busy, and upon first glance they often look genuine. How valuable are your medical records?
Medical records are incredibly valuable as they contain personally identifiable information and therefore, it is really important for medical, dentist and other practices to protect themselves from email fraud.
Here are some tips to help you and your practice stay safe.
Beware of ‘unsuspicious’ emails – Not all phishing emails will be obvious. It is quite easy to spoof a genuine contact in your address book to make an email appear to be from someone you know. Be vigilant when opening all emails and don’t click on links or attachments unless you are sure they are not malicious. If you are unsure, contact the apparent sender to find out if they really sent it.
Don’t give away personal or banking information – Email is not a safe form of communication and you should never share personal details, banking details or information that could give away your passwords via this method. Reputable, genuine companies will have more secure methods for transactions. Inadvertently sharing password information could lead to a hacker accessing your practice’s network and compromising all your data.
Don’t be pressured – Email scammers use various techniques to get you to share your details. Often they create urgency through apparent deadlines, or other scare tactics to pressurise you into handing over data before you have time question it. If you feel pressure to hand over information but it doesn’t feel right, take a step back and review the email.
Invest in staff training – There are various scams targeting the healthcare sector so it is important that you and your staff understand the risks and know what to look out for. Have regular training sessions and refresher courses to keep employees up to date on the latest phishing techniques and ensure this remains top of mind.
Lead by example – If staff see practice owners being lax with security, passwords and email practices, they will see this as acceptable and follow suit. The best way to encourage good, secure behaviour is to take part in training yourself and put into practice some of the Cyber security tips in this article and from your training.
Speak to your broker – Your broker will be able to talk you through your Cyber liability insurance options to help you protect your practice, and your customers. In order to keep your insurance valid, you will need to put in place good security processes which your broker or insurer will be able to give you some guidance on.
All helpful information to keep your data secure.
For more information on protecting your healthcare practice with Cyber liability insurance, speak to one of our expert advisors to talk through your specific requirements.