We receive suspicious emails that appear to be from employees asking to change their direct deposit information. After researching the matter, we found out that this is likely a phishing scam—a type of con in which scammers use emails, texts, or phone calls to trick someone into providing company or personal information that then allows the scammer to steal from them. These messages often appear to come from someone the recipient knows—in this instance, our employees. Maximum Care employees should be aware of the attempts and not respond to suspicious emails or email-sensitive information.
To protect your organization from this and other phishing attempts, we are taking the following steps:
Verifying that the message is not legitimate, inspecting the email addresses for validity, and reaching out to the employees to confirm they didn’t request to change their bank information.
Notifying our IT department of the potential phishing attempt.
Informing our workforce that scammers are afoot and reminding them not to respond to suspicious emails or email sensitive information.
Karolina Belusko, MHA Director of Fiscal Operations