Is your practice taking measures to prevent a cyberattack? We’ve seen an increase in phishing attacks targeting member physician email accounts. These compromises can expose access to PHI and critical systems like TigerConnect and Innovation Exchange, allowing malicious emails to spread across ICP and other physician practices.
Be aware that phishing emails have become quite clever and increasingly more authentic and compelling. Simply clicking a link or opening an attachment is enough to expose vulnerable data or introduce viruses and malware to compromise systems.
How do you protect your practice?
The first step is being proactive and taking measures to prevent an attack. The best way to protect your practice is by enabling Multi-factor Authentication (MFA), which greatly reduces the risk of unauthorized access, even if your password is stolen.
MFA adds an extra layer of security by requiring users to verify their identity in more than one way—like entering a password and then confirming with a code sent to their phone—helping protect sensitive data from unauthorized access.
Most email platforms support MFA. If you use Gmail, Outlook, or Live.com, you can enable MFA in your account settings under "Security" or "Sign in and Security." If your practice uses a custom domain or email provider, contact your IT support to ensure MFA is enforced. Enabling MFA is quick (set up in just a few minutes), free and the single most effective way to stop phishing attacks.
For quick setup guides and resources, visit:
Gmail
Outlook or Live (business)
Outlook or Live (personal)
