- AOA Innovation Hub premieres at Optometry’s Meeting®
- Medicare Advantage Risk Adjustment audits are overwhelming optometry practices
- This members-only benefit offers something for everyone
- Take a strategic approach to Medicare Advantage records requests
- How to launch a successful career in optometry
- A voice for independent doctors
- Are you prepared?
- How to fill your staffing needs
- The latest on AI and optometry
- More courses, more uses, more impact: Why more AOA member doctors, staff are turning to AOA EyeLearn
- Master paraoptometric certification exam prep with AOA’s study resources
- 5 things every office needs to practice full-scope optometry
- Why thriving practices are prioritizing retirement plans
- What happened to the FTC’s noncompete ban?
- Keeping your practice (and finances) safe
- Is your exam chair ADA compliant?
- 2.9% Medicare cut, broadly panned, looms over 2025 as advocates press Congress
- How to navigate political conversations in your practice
- Making the grade
- Does your malpractice insurance provider measure up?
- The power of delegation
- New technologies shaping optometry’s future
- How AOAExcel makes your life easier
- Next-gen optometry’s focus on independent practice
- Inferiority complexity?
- Is your staff connected? How peer connections benefit practices
- Protecting patient privacy when a clinical observer visits
- Does your practice do in-house billing? Here’s something to know
- Where to start? The tools and resources to leave a positive impact on your patients and community
- AOA boosts support for optometrists rocked by Change Healthcare cyberattack
- Be aware of new classification of employee vs. independent contractor from labor department
- Why optometrists love the AOA Business Card
- Paraoptometric Month
- Patient intake coding for medical diagnoses
- Set your practice up for success
- New federal Corporate Transparency Act
- How to compete with online sellers
- CMS finalizes 2024 physician fee schedule: AOA’s 8 takeaways for optometry
- How do you measure success in your practice?
- 4 tips to elevate the profession and educate the public
- Now we’re talking: Communicating with the public
- Level up your optometric surgical team: AOA launches surgical assistant coursework
- 4 essential personal financial tools for optometrists
- Coding for orthoptic training
- New remote testing option for paraoptometric certification saves time, distance
- Testing 1, 2, 3 … paraoptometric exam handbook, resources for certification testing
- 6 things every hiring practice owner should include in a career center listing
- Now we’re talking: Patient communication
- AOA, leading schools organize to safeguard and expand optometry’s independence
- Co-managed care rife with success stories for patients, doctors
- 3 ways to grow careers and practices at Optometry’s Meeting® 2023
- Why disability insurance is crucial
- Now we’re talking: Interprofessional communication
- Build your practice and protect the planet
- You’ve been served—now what? Where ethical intersects legal
- DEA’s new opioid training mandate: What you need to know
- How to handle bad reviews and ratings
- How the updated position statement can help guide telemedicine in optometry
- 3 questions to ask your malpractice insurance agent
- Optometry’s ‘medical’ eye care opportunity a boon for patients, coordinated care
- AOA Antitrust Compliance Policy
- How the AOA Business Card can benefit your practice
- Combatting inflation
- How to earn an MBA while practicing
- AOA’s new Center for Independent Practice to amplify members-only resources for practice success
- Window Tinting
- The most important thing to know about retirement savings planning
- bolster your cybersecurity
- Identity Theft
- How the HIPAA Privacy Rule applies in a public health emergency
- Partners in care
- 4 tips for handling payer clawbacks: What the experts say
- When patients defect: A case study in emotional intelligence
- A career choice
- Be proactive: Identifying improper sales programs, financial incentives
- Scope of practice and malpractice insurance
- website ADA compliance
- Which retirement plan is right for you
- AOA practice success initiative can help with payer issues
- The most important questions to ask about disability insurance
- audio-only telehealth
- A case study in professionalism
- How to eliminate bias in the exam
- Keeping the practice’s mental health top of mind
- Managing expectations Telemedicines next step
- Optometrys Meeting Surgical Saturday
- 5 ways AOA membership can bring your practice success
- 6 ways to make a job posting pop
- The impact of paraoptometric certification
- AOA EyeLearn revamp improves accessibility of CE resource
- Good faith estimate requirement takes effect
- Optimize your student loan repayment strategy
- How to speak the universal language of care
- How to Obtain Hospital Privileges
- 4 common misconceptions about life insurance
- The privileges of providing care
- How team learning improves doctor-staff coordination
- Pandemic savings strategies
- doctor-patient-communication
- AOA 2021 Virtual Learning Livecast opens for registration
- Virtual interview tips for employers and applicants
- Paraoptometric Exam Materials & Certification
- Keeping the medicine in telemedicine
- Know your options
- Business transition tips for buying or selling
- The wrong patient communication plan could be costly
- New must have resource by AOA for MIPS providers
- AOA faults Ophthalmology journal MIPS study
- Doctors find lessons and success in applying for lifeline PPP loans
- AOA MORE takes yearlong pause
- New rules ahead for patient access to electronic health records
- 7 things to know to protect your future
- PPP Loan Tax Implications
- AOA offers CE-eligible webinar-paraoptometric certification
- 8 lessons the COVID-19 pandemic has taught us
- talking politics keep peace in the practice
- Selling your practice to a private equity firm
- paraoptometric certification
- Life Insurance Awareness Month
- Members support AOA during COVID-19
- VLL courses debut on AOA professional development hub
- Why back to school eye exams are crucial this year
- Protection check-in
- AOA 2020 Virtual Learning Livecast a success
- How to turn your patients into brand ambassadors
- Paraoptometrics have key role in scope expansion
- Communication key unlocking patients virus fear
- lessons from phase one reopening practices
- Report quality measures and MIPS data
- AOA offers guidance for post-COVID-19 reactivation
- How to reduce your carbon footprint
- federal loans ease pain of COVID-19 pandemic
- life insurance questions answered
- ethically providing telehealth services in your practice
- AOA surveys can benefit optometry
- Healthcare cybersecurity
- Doctor google web health-related inquiries can cloud care
- AOAExcel GPO Contact Lenses optical products
- How to get the most out of your AOA member benefits
- How AOA MORE can help you
- Co management 4 steps to success
- What doctors need to know about retirement savings
- Crafting a clickable job posting
- health information cyber attack
- Overtime pay labor law
- Service animals vs emotional support animals in the practice
- InfantSEE tips for children eye exams
- Medicare Beneficiary Identifiers and doctors of optometry
- Physician burnout EHR
- Flushing Hazardous Waste EPA
- Ethically incorporating telehealth-telemedicine services into your practice
- Transition Right
- Frequently asked questions about liability insurance
- How good doctors compete with bad companies
- National Life Insurance Day
- Team effort
- National Retirement Week
- How to become a bilingual practice
- Be a social whiz
- How to balance work and home life
- Physician burnout improving, still high comparatively
- What do patients think about the Open Payments program
- Paraoptometric certification can boost a career
- Doctor of optometry diabetes crusade
- How AOA membership helps protect your practice and the profession
- How to optimize diabetic care
- How to improve patient care and practice economics
- Pediatric Exams Kids Fears
- How to retire with confidence
- CMS ONC send message on faxs demise doctors put them on hold
- Data breaches cost insurers big but providers more frequently
- How to start a sports-vision practice
- 4 practice tips when disaster strikes
- Bad hires happen
- AOA MORE reports first patient data_helps MIPS providers attest
- Keeping up with Doctor Jones
- STEM academia no different Women face harassment
- The dos and donts of customer service
- Medicare repeals payment cap for therapy services
- Earned interest
- Optometrys bread and butter
- Disability Insurance
- Sustainable solutions-Focusing on a green future
- Ethics Disabilities
- Flu Epidemic
- CMS-Texting PHI among health care providers OK with caveats
- TaxTips
- AOA tools you need to succeed
- Keeping peace in the practice during the holidays
- Handle with care How to dismiss a patient
- Cybersecurity Awareness Month
- Dont let your nest egg lay an egg
- How to add a subspecialty to your practice
- Disaster Lessons
- 4 things to consider before volunteering
- Go green and save green
- server and protect
- AOA encourages members to protect themselves against cyberattacks
- Credit breach continues grip on doctors
- AOA to CMS Significant changes needed to MIPS proposed structure
- Caution email phishing scam
- EBO Guidelines in Practice
- Aging Eyes
- Sunshine Act-Industry Reports
- the-best-defense-against-office-harassment
- Review practice policies on harassment
- Cybersecurity and Cyber Monday
- Medicare Part D drug costs
- tips to get more pediatric patients through your door
- Windows OS on Life Support
- 9 business solutions for doctors
- Tools of engagement enrolling staff as AOA associate members
- retinol ruses and root veggies-fantastic tale of carrots
- Practice changes can increase office efficiency
- On Employee Appreciation Day show your staff you care
- Data breach implications for tax season
- How to make the most of the media megaphone
- 6 types of photos to share on social media
- Holiday how to gifts goals and goodwill
- Credit freeze hinders PQRS feedback
- Considerations for a comanaged care strategy
- Whats your plan 4 tips for emergencies
- AOA US Postal Service raise awareness on eye health
- 3 solutions for noshow patients
- MACRA final rule offers flexibility
- In case of emergency
- 3 actions to help staff grow
- AOA tool helps solve social networking dilemmas
- AOA asks NBEO for assurances on data
- How to prevent theft
- How to fund a retirement program for your practice
- Not meeting attesting to MU Hardship exceptions available
- Malpractice insurance Ensure coverage even after retirement
- Does the white clinical coat matter to patients
- HIPAA Then and now
- Doctors of optometry can play a role in erasing health disparities
- Credit breach continues grip on doctors, students
- AOA member feedback impacts Medicare valuations for services
- How a strong doctor office manager relationship can grow your practice
- Share questions and comments in Ethics Forum
- Think About Your Eyes campaign continues to raise public awareness
- Be prepared for more patients requesting to access their health records
- Medicare Supplier Program Requires Fingerprint based Background Checks
- 4 ways to protect your patients and practice from cyberattacks
- When doctors become patients
- The benefits of a bilingual practice
- Harmed by contact lenses Report now
- Medicare Part D prescribing data offers insight
- AOA nets 2016 Medicare fee schedule wins
- 9 member benefits through AOAExcel
- Health centers to expand services with 500 million grants
- Doctors Are you covered
- Tax law change could impact doctors
- Why doctors of optometry should seek hospital privileges
- CMS issues EHR Incentive Programs final rule
- Cybersecurity Is your patient information practice protected
- Create a space for kids in your office
- Prepare for a shift in credit card fraud liability
- Significant policy change in post-op co-management
- How to go the distance
- Accommodate aging eyes in your practice
- CMS tests Medicare Advantage plan benefit designs
- Get your practice noticed online
- Protect your practice from copyright infringement
- New reports AOA members tally higher incomes
- Position your practice for aging eyes
- Survey Vision insurance sales increase
- 4 paths to practice protection
- Improving patient care with certified paraoptometric staff members
- How to successfully navigate Medicare Advantage plans
- AOA releases directory of accountable care organizations
Home
/
News
/
Practice Management
/
Perfect Your Practice
/
AOA cautions against email phishing scams
AOA cautions against email and phone scam
March 19, 2019
Take precautions to protect yourself, practice against scammers.
Email phishing scams are nothing new but that doesn't mean their effectiveness has waned as variations continue to catch victims hook, line and sinker. Now, there's a new threat possibly lurking in doctors' emails.
Recently, AOA learned of a new "spear phishing" attempt against some doctors' emails that utilizes a fraudulent AOA sender name and subject line to lure unwary users into downloading an infected attachment. This harmful email contains a "From" line that reads "©2018 American Optometric Association," and a subject line that states "AOA-Related Entities and Other Organizations Roster." However, this email does not originate from AOA.
Doctors should be warned that the email in question claims "You have a pending docs shared with you via Adobe Acrobat DC. Please ensure to review the attachment. The secure message expires on [a given date." Do not click this link as it could download Malware onto users' network.
Although unsolicited email prompts from Nigerian princes or stranded family in the Philippines (send money now) are, generally, easily identifiable as fishy—however, the latter caused a breach of the vice president's personal email—hackers now are taking a much more precise, sophisticated approach.
Called spear phishing, these malicious emails fraudulently appear to originate from a known or trusted sender to elicit confidential information, such as passwords, account numbers or other sensitive data. These schemers go to great lengths to trick users, and target victims ranging from individuals and small businesses to large corporations.
In April 2016, the FBI's Internet Crime Complaint Center (IC3) reported a 270% increase in identified victims and exposed losses in the previous year from business email compromise scams with losses totaling more than $2.3 billion in all 50 states and nearly 80 countries. But this deception is all about getting a foot in the door. Criminals can infect malware or even hold businesses' files and data hostage until a sum is paid—ransomware—to do even more damage, and that's where the toll significantly climbs.
Across all industries, the number of ransomware incidents handled by Beazley, the specialist insurer underwriting the cyberliability insurance offered by AOAExcel ® Endorsed Business Partner Lockton Affinity, quadrupled from 2015 to 2016, and half of those were in health care. That number was expected to double again in 2017.
"Nobody is immune," Katherine Keefe, head of Beazley Breach Response Services Group, told AOA Focus in a May 2017 article, titled, "Danger Data: The (Digital) Threat from Within." "That's because this is a good model for criminals—sometimes these little companies and doctors' offices have no other independent way of restoring that data from backup, so they're more likely to pay."
4 ways to prevent falling victim to phishing scams
These kinds of advanced spear-phishing scams are a very real, commonplace threat, and unfortunately easy to overlook. That's why the FBI's IC3 offers tips for avoiding these deleterious emails:
- Be suspicious. Most email users know not to open or engage spam email, but spear-phishing scams masquerade as a familiar entity. Therefore, take a skeptical approach to any unsolicited email, especially those asking for personal, financial or network security information. Be wary of free, web-based email accounts that are more susceptible to hacking. Also, be skeptical of emails that request secrecy or pressure you to act quickly.
- Keep confidential information confidential. Personal, financial or network security information that falls into the wrong hands can cost you and your business dearly. Stolen Social Security numbers can be used to open lines of credit or to file fraudulent tax returns, while compromised network security information in a medical practice exposes ePHI and can be a violation of the HIPAA Security Rule.
- Be wary of links, web addresses. Spear-phishing scams often mimic trusted parties by making miniscule changes in email extensions or links. For example, a schemer may use the exact same email as a known user, but change .com to .co and alter the account display name to read from a known party. Advanced attacks may even borrow a company logo or header to appear official and avert attention away from an altered extension. Such was the case with a phishing attack posing as communication from the Department of Health and Human Services Office of Civil Rights.
The goal of these realistic emails is to elicit an action, be it divulging confidential information or persuading a user to click a deceptive link. This link may take users to a familiar, look-alike site that requires security information, such as an online banking account. Once users enter their login credentials, the scammer can hack the account and continue spreading the malicious email. Always compare the link in an email to the link you're directed to, and visit the official website instead of clicking on the link in an unsolicited email. - Make contact. Don't hesitate to reach out to the actual business or entity that supposedly sent the email to verify its validity. This quick, simple step could easily expose an email scheme for what it is, and alert you to malicious addresses, links or fraudulent email addresses.
Learn about cyberliability insurance and compliancy solutions from AOAExcel endorsed business partners.