In light of the recent hacking of the HSE, where a lot the HSE customer data has been copied. it is likely that many of our members may get emails or calls from people purporting to be from the HSE or related sources or from institutions like banks etc.
These calls and emails will be convincing as they will have much of your personal data, DOB, address, health issues you have. The contact will probably be asking for money, or if not additional data about you or a loved one to handle an issue, often with some urgency behind the request.
The IWAI will never make any such request except personally by the membership secretary if there is a need to update something on your membership or the Shop manager Colin Becker if there is a need to get additional information to ship the purchase or agree shipping costs.
As the HSE breach will impact every person living in Ireland and using any of the HSE services, that means basically everybody may get such contacts.
Any contact from anybody should be treated with caution, even if asking for addition personal information, all of this can be used to pretend to be you to a bank or other service and can fool the service provider into giving the hacker access to the service.
Expect all good responsible service provider to be looking for additional verification of your identity and if you have not initiated the contact, do not respond and stop the communication and restart the contact yourself to a separately identified KNOWN contact details of the service provider.
Basic advice whether it is a email, a phone call or SMS
- Do NOT answer or respond to the contact immediately or directly if you have not initiated it.
- Phone call -, explain to the caller you will hang up and call back a known contact number for the services they proport to be. IWAI officers will not have any issue with this and will expect this and will await the call back but if the caller gives you a number, do not call it, find independently the number and call this number as they will give you the number, they want you to call.
- Emails or SMS – do not open or click on any link within the email//SMS unless you know the origin and are expecting the email.
- For example, you have triggered a password reset recently and you get an email to reset your password, if you have not personally done it, do not open the email or clock on the link. This is a typical method of email phishing used by hacker.
- Emails from the IWAI will come from an email address with iwai.ie after the @ in the email address and nothing else, no additional characters either before it or after iwai.ie
- If you have any doubt about an IWAI contact, call the membership secretary to discuss using an independently identified number.