What every physician needs to knoW: hoW to detect email fraud

? phishing

• Emailfraudisalsoknownasphishingorspearphishing.

• Phishing–anattemptbycybercriminalswhouseanemailmessagethatappearstocomefromatrustworthysourcetogetarecipienttoprovidesensitiveorprivateinformation,suchasausername,password,creditcardnumber,orothersecuredata.

1 spelling & bad grammar

• Ifyounoticespellingorgrammarmistakesinanemail,itmightbeascam–especiallyiftheemailappearstocomefromanorganizationyoudobusinesswith.Legitimatebusinesseshavecommunicationdepartmentsorstaffwhoreviewandeditemailbeforesendingittocustomers.

1 spelling & bad grammar

• Checkforproperspellinginwebaddressesaswell.Cybercriminalsusewebaddressesthatresemblethenamesofwell-knowncompaniesbutareslightlyaltered.

threats 2• Emailscamswillenticeyoutorespondtothemessagebythreateningtocloseanaccountorbythreateninganothertypeofaction.Legitimateinstitutions,particularlybanks,donottypicallycommunicatethiswayoraskyoutoclickonalinkinanemail.Donotreply,clickonlinks,orcallphonenumbersprovidedinthemessage.

threats2• Contacttheinstitutiondirectlyusingcontactinformationyouknowtobecorrectifyouhaveanydoubtsorquestions.

• Thisalsoappliestoemailswithrequestsforurgentresponses.

links

• Youcanpreviewalinkinanemailmessage,withouthavingtoclickonit,byhoveringyourcursoroverthelink.Eitherasmalltextboxwillappearwiththefullwebaddressoritwillappearinthelowerleftcornerofyourbrowserwindow.

3

links

• Ifthelinkappearssuspiciousordoesnotmatchthelinkinthemessage,donotclickonit.Theselinkscandirectyoutospoofingsitesorleadyouto.exefiles,whichcanspreadmalicioussoftware.

3

4• Iftheemailmessageisaskingyoutoconfirmorprovidepersonalinformation,donotreply.Emailisnotasecuremethodforsharingsensitiveinformation,andlegitimatebusinessesdonotaskyoutosendinformationthisway.

asking for personal

information

5• Filesattachedinanemailcouldcontainvirusesorothermalwarethatcanweakenyourcomputer’ssecurity.Ifyouthinkyoureceivedaphishingemaildonotopenordownloadanyattachments.

suspicious attachments

6• Thenextslidedemonstratesareal-lifeexampleofaphishingattempt.

email fraud example

Ref. EF54325-EE14555-0456531

Dear Amazon Client,

Your account will be closed because a violation of our term of useWe Investigated in this issue and found a fraudulent activity from another ip address.

In this activity a fraudulent transactions and more suspicious activity from an unknown computer.

Please verify your identity for we can process this issue

We recommend follow this steps below carefully :

>identity verification

This is a big risk to our customers you will take all responsibility for this issue.

As well if you didn’t complete the steps with all required information we will give this issueto the US Security Department.

Thanks,

Security Team

7• Lookforthesesignsifyoureceiveasuspiciousemail:

• Genericgreeting(notyourname)• Badspellingorgrammar• Requestsforpersonalinformation• Threatsand/orrequestsforanurgentresponse• Spoofedlinks

• Whenyou’reunsureaboutthelegitmacyofanemaileithercallthesenderorcontactyoursecurityofficer,ITstaff,orconsultant.

email fraud check list

protection for a neW era of

medicineabout tmlt:Withmorethan18,000physiciansinitscare,TexasMedicalLiabilityTrust(TMLT)providesmalpracticeinsuranceandrelatedproductstophysicians.Ourpurposeistomakeapositiveimpactonthequalityofhealthcareforpatientsbyeducating,protecting,anddefendingphysicians.www.tmlt.org

8Find us on: