• LinkedIn
  • YouTube
  • Twitter
  • Facebook
  • Google+

HHS civil rights office warns of HIPAA phishing scam

Get PDF file

by on
in Office Management,Payroll Management

In this age of multiplying online scams, tax phishers aren’t your only concern. If you have a health plan, the odds are you’re covered under the Health Insurance Portability and Accountability Act, or HIPAA. The Department of Health and Human Services Office for Civil Rights—the OCR—has become aware of two phishing schemes related to HIPAA.

Don’t click here. In the first phishing scam, a mock email is circulating under what appears to be the OCR’s official letterhead; the email purports to be signed by the director. Recipients are prompted to click a link, which takes them to a commercial website marketing a firm’s cybersecurity services.

The second phishing attempt is also disguised as an official OCR communication, and also directs recipients to a commercial website marketing a firm’s cybersecurity services. This time, however, the OCR got the phony email address: OSOCRAudit@hhs-gov.us. The phony redirect is to: www.hhs-gov.us. The OCR’s real email address is OSOCRAudit@hhs.gov.

{ 1 comment… read it below or add one }

Galit Zamler July 20, 2017 at 4:17 am

You can avoid falling victim to phishing scams by installing the ScamBlockPlus Chrome extension.


Leave a Comment