NHSCFA introduces expanded cyber fraud awareness resource

The expanded NHS Fraud Reference Guide aims to provide a cyber fraud awareness resource for NHS organisations to help them protect themselves from the threat of cyber fraud. The content will also assist Local Counter Fraud Specialists in informing and educating NHS staff on this key topic.

Within the introduction, the differences between types of cyber offence are highlighted. There’s also a glossary of common cyber crime terms and associated definitions. Key cyber threats – among them social engineering, password theft, payment diversion fraud and malware – are set out within a number of sections.

The project complements a drive across Government to encourage organisations to refine their understanding of the threat from cyber fraud and provide advice to assist the public in staying safe online.

Criminals continue to target members of the public by sending e-mails and messages purporting to be from Government agencies including the NHS, as has been highlighted only recently in relation to COVID-19 vaccine fraud.

Supporting all NHS staff

With this in mind, the National Health Service Counter Fraud Authority (NHSCFA) has also tailored the cyber fraud awareness resource to support all NHS staff and the public on how to protect themselves from cyber fraudsters and stay safe online. There are a number of useful links including to the National Cyber Security Centre’s cyber awareness pages and NHS Digital’s Cyber Security Operations Centre.

There are a number of reporting channels available for cyber incidents depending on which specific incident has occurred and these are documented within the reporting section of the new document.

The project has been led by the NHSCFA’s Fraud Prevention Unit working together with colleagues both internally and externally including the intelligence, organisational development and digital teams as well as NHS Digital and the Police Digital Security Centre.