Cyberthreats are never-ending, with bad actors with malicious intent continuously trying to gain access. Colleagues must remain vigilant to protect themselves and the health system from these bad actors.
What you can do
Here are key actions every colleague can take to help keep the organization secure:
- Stay alert for phishing attempts.
- Be cautious with emails, texts or messages that ask for sensitive information or urge immediate action.
- Voice phishing (vishing) is when people may impersonate internal IT staff, trying to trick colleagues into revealing credentials and multi-factor authorization approvals.
- Use strong, unique passwords. Avoid reusing passwords across systems. Use a password manager and enable multi-factor authentication wherever possible.
- Do not give out your username or password to anyone.
- Do not click on a link or attachment in an email that looks suspicious or is from someone you do not know.
- If an email appears to be from someone you know but sounds suspicious, contact them another way to verify.
- If DUO prompts you to accept a login attempt, make sure that this is an attempt you have initiated. If you did not do something to prompt it, deny the request and report the incident to IT security.
- Report suspected phishing email attempts by clicking the Report Phish button in Outlook.
Report suspicious activity immediately. If something does not seem right, trust your instincts and contact information security or call the IT Help Desk at 402-559-7700. Early reporting can prevent major incidents.