Scam calls/emails
-
@Dashrender said in Scam calls/emails:
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
We are going to be doing a report to see if there are any common IPs accessing these three patients.
Also check and see if the patients are in the same DB?
They are - all of our patients are in a single DB.. each client of the EHR is in a single DB. I.e. we are a client, and all of our patients are in a single DB.
I would put a call in to the EHR for sure and tell them what's been happening.
yup, started the process on Friday - then the line got disconnected.
I have to call them back today.
Hopefully you didn't get disconnected today?
-
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
We are going to be doing a report to see if there are any common IPs accessing these three patients.
Also check and see if the patients are in the same DB?
They are - all of our patients are in a single DB.. each client of the EHR is in a single DB. I.e. we are a client, and all of our patients are in a single DB.
I would put a call in to the EHR for sure and tell them what's been happening.
yup, started the process on Friday - then the line got disconnected.
I have to call them back today.
Hopefully you didn't get disconnected today?
Sadly, the call back didn't happen today.
-
@Dashrender said in Scam calls/emails:
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
We are going to be doing a report to see if there are any common IPs accessing these three patients.
Also check and see if the patients are in the same DB?
They are - all of our patients are in a single DB.. each client of the EHR is in a single DB. I.e. we are a client, and all of our patients are in a single DB.
I would put a call in to the EHR for sure and tell them what's been happening.
yup, started the process on Friday - then the line got disconnected.
I have to call them back today.
Hopefully you didn't get disconnected today?
Sadly, the call back didn't happen today.
Figures.
-
@scottalanmiller said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
@dafyre said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
We are going to be doing a report to see if there are any common IPs accessing these three patients.
Also check and see if the patients are in the same DB?
They are - all of our patients are in a single DB.. each client of the EHR is in a single DB. I.e. we are a client, and all of our patients are in a single DB.
I would put a call in to the EHR for sure and tell them what's been happening.
yup, started the process on Friday - then the line got disconnected.
I have to call them back today.
Hopefully you didn't get disconnected today?
Sadly, the call back didn't happen today.
Figures.
Oh, this was on me, not them. I'm just swamped with user issues - training a new user, etc.
-
This post is deleted! -
I've made the call back.
the EHR vendor say - nope not us - unless we've had such a catastrophic hack that we can't detect it in our logs.
-
@Dashrender said in Scam calls/emails:
the EHR vendor say - nope not us - unless we've had such a catastrophic hack that we can't detect it in our logs.
"Not in our logs" is a pretty weak defense of not having been hacked.
-
@scottalanmiller said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
the EHR vendor say - nope not us - unless we've had such a catastrophic hack that we can't detect it in our logs.
"Not in our logs" is a pretty weak defense of not having been hacked.
While true, I would also lean towards his network being infected and him not knowing it, over a large EHR vendor.
We also know (assume as a smaller SMB) he has no SEIM to give him information about the state of his network.
-
@JaredBusch said in Scam calls/emails:
While true, I would also lean towards his network being infected and him not knowing it, over a large EHR vendor.
Agreed. Way more likely
-
@JaredBusch said in Scam calls/emails:
@scottalanmiller said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
the EHR vendor say - nope not us - unless we've had such a catastrophic hack that we can't detect it in our logs.
"Not in our logs" is a pretty weak defense of not having been hacked.
While true, I would also lean towards his network being infected and him not knowing it, over a large EHR vendor.
We also know (assume as a smaller SMB) he has no SEIM to give him information about the state of his network.
I definitely agree with this. The odd thing is we can't find a correlation between these incidents. Not the same doc, not the same staff, not the same computer.
-
@Dashrender said in Scam calls/emails:
@JaredBusch said in Scam calls/emails:
@scottalanmiller said in Scam calls/emails:
@Dashrender said in Scam calls/emails:
the EHR vendor say - nope not us - unless we've had such a catastrophic hack that we can't detect it in our logs.
"Not in our logs" is a pretty weak defense of not having been hacked.
While true, I would also lean towards his network being infected and him not knowing it, over a large EHR vendor.
We also know (assume as a smaller SMB) he has no SEIM to give him information about the state of his network.
I definitely agree with this. The odd thing is we can't find a correlation between these incidents. Not the same doc, not the same staff, not the same computer.
Same network, though.
