Digital Shared Services is tracking a rise in targeted email phishing attacks in users across Shared Health. These emails seem like they are coming from a Director or Executive in the organization, but the email will be unfamiliar, and they will often ask for personal information.

Notice the email address in the message below. The email is very generic, and it didn’t come from one of our corporate email domains (@sharedhealthmb.ca, @wrha.ca, etc.). As well, the email tries to instill a sense of urgency in the recipient to provide personal information. This is something scammers will often do.

As a reminder, employees should never use their personal emails to communicate regarding work matters.

To help protect yourself from phishing attacks, follow these tips:

• Read and re-read the message. Double-check the message and sender for anything strange
• Don’t click on suspicious links or download unknown files
• Never share your password! – Never, ever, but especially not over email or text.

More information on phishing attacks, and what to do if you receive a phishing or suspicious email.

Digital Shared Services has many resources to help you identify potential phishing attacks, including an online PHIA training course, which includes security awareness reminders, available on the LMS.

Submitted by: Digital Shared Services