• Revenue Cycle Management
  • COVID-19
  • Reimbursement
  • Diabetes Awareness Month
  • Risk Management
  • Patient Retention
  • Staffing
  • Medical Economics® 100th Anniversary
  • Coding and documentation
  • Business of Endocrinology
  • Telehealth
  • Physicians Financial News
  • Cybersecurity
  • Cardiovascular Clinical Consult
  • Locum Tenens, brought to you by LocumLife®
  • Weight Management
  • Business of Women's Health
  • Practice Efficiency
  • Finance and Wealth
  • EHRs
  • Remote Patient Monitoring
  • Sponsored Webinars
  • Medical Technology
  • Billing and collections
  • Acute Pain Management
  • Exclusive Content
  • Value-based Care
  • Business of Pediatrics
  • Concierge Medicine 2.0 by Castle Connolly Private Health Partners
  • Practice Growth
  • Concierge Medicine
  • Business of Cardiology
  • Implementing the Topcon Ocular Telehealth Platform
  • Malpractice
  • Influenza
  • Sexual Health
  • Chronic Conditions
  • Technology
  • Legal and Policy
  • Money
  • Opinion
  • Vaccines
  • Practice Management
  • Patient Relations
  • Careers

Feds warn of monkeypox-themed malicious email campaign targeting health care providers

Article

Don’t click on links or attachments unless you’re sure they are legitimate.

Feds warn of monkeypox-themed malicious email campaign targeting health care providers

Physicians and their staff should beware a monkeypox-themed email campaign that is targeting health care providers.

A sector alert was published Sept. 19 by the Health Sector Cybersecurity Coordination Center (HC3), within the U.S. Department of Health and Human Services. The campaign uses official-sounding language to convince recipients to click on a bogus download that is really a program that attempts to steal email credentials.

The sector alert stated: “The campaign has a subject of: “Data from (Victim Organization Abbreviation): "Important read about - Monkey Pox – (Victim Organization) (Reference Number) and utilizes an “Important read about Monkey Pox” theme.

“Inside of the email is a PDF with a malicious link which lures the recipient to a Lark Docs site. “The site is Adobe Doc cloud themed and offers a secure fax Monkey Pox PDF download.

"Clicking the download attempts to harvest Outlook, O365, or other mail credentials.”

HC3 recommends the following actions to help protect organization cybersecurity:

  • Protect each account with complex, unique passwords. Use a passphrase and/or a complex combination of letters, numbers, and symbols.
  • In general, avoid opening unsolicited emails from senders you do not know.
  • Do not open a link or an attachment in an email unless you’re confident it comes from a legitimate source.
  • Do not download or install programs if you do not have complete trust in the publisher.
  • Do not visit unsafe websites and do not click on pop-up windows that promise free programs that perform useful tasks.
Related Videos
Kyle Zebley headshot
Kyle Zebley headshot
Kyle Zebley headshot
Michael J. Barry, MD
Hadi Chaudhry, President and CEO, CareCloud
Claire Ernst, JD, gives expert advice
Arien Malec