Americans are spending more time at home, which means they’re likely spending more time online. While their attention is focused on staying healthy, they shouldn’t forget to stay vigilant about cybersecurity either.
The FBI recently warned that cybercriminals are taking advantage of the current environment to steal personal information and money. The scams come in various forms, including fake emails from the Centers for Disease Control and Prevention and World Health Organization claiming to offer new information on the virus; emails asking users to verify personal information for an economic stimulus check from the government; and emails selling counterfeit COVID-19 related products or treatments.
Personal health information can be a target for hackers too.
According to the Office of the Inspector General, personal health information (name, social security number, Medicare number) can be stolen and used to file false Medicare or other health insurance claims. If this occurs, individuals might experience a disruption in medical care should they need it.
Bob Davis, deputy chief information security officer, Cigna, has a few simple steps to protect individuals and families from threats.
• Never open email or attachments from unknown senders. Many scams occur when clicking on fraudulent links or attachments in emails. Sometimes these emails can look similar to those received from legitimate sources, such as a health insurer, making it difficult to notice the difference. Pay attention to details: does it look like other valid communications you’ve received? Is the sender email address correct? To check a link’s legitimacy, hover over the text to see where it will redirect.
Also note, when communicating with health insurers online, it will likely be done through a secure email portal, which automatically encrypts (secures) emails and can only be accessed by signing in using a pre-determined password.
• Guard personal information. As a general rule, health insurers will never ask for credit card information or account passwords in an email. Report emails asking for this information to your health insurance company immediately.
• Hang up and call back. Not all threats occur online. Be wary of phone calls from someone claiming to be your health insurance company asking for personal information. To confirm legitimacy, simply hang up and call the customer service phone number listed on the back of the insurance card. In most cases, if information or payment is needed, individuals will receive a letter in the mail, not a phone call.
• Monitor texts and social media. Many use cell phones as a primary way to communicate, so it should be no surprise that cybercriminals are turning to text messages as a way to steal information. Text messages should be approached the same way as emails. Don’t click on links or share information with unfamiliar numbers. Same goes for social media. Don’t click on suspicious advertisements or links.
• Remind friends and family. Just like friends and family are reminded to stay healthy, the same should be done with cybersecurity threats. Remind loved ones, especially the elderly, to pay close attention to unsolicited emails and calls, and to limit the information they share over the internet. If seniors think that they may have been victim of a scam, they should contact Medicare as soon as possible at 1-800-MEDICARE.