With an increasing occurrence of cyber security incidents, including phishing and malware attacks, members are reminded of the IPU Information Security Guide for Community Pharmacy on our website here.
Separately, the HSE has issued Security Guidance for Healthmail Users directly to Healthmail accounts:
Dear Healthmail User,
In an era of ongoing and intensified cyber attacks we all need to be aware of good practice to keep our information systems and data safe.
We would like to take this opportunity to remind you of the following:
If you access your secure email account over a Web Browser then all the emails and attachments are held securely in the Healthmail mailbox. If you download individual emails or attached files, or if you download all your email using an email programme on your computer, tablet or smart phone, then you are responsible for the security of the emails and files, in the same way as you are responsible for the security of your electronic patient records. Healthmail uses comprehensive message hygiene (anti-virus, anti-spam, anti-phishing etc.) technologies to protect the service and data. It is important that your practice also has up to date anti-virus software and that you have the appropriate security measures in place in line with protecting the electronic data. This will vary depending on whether you are using a computer, laptop, tablet or smartphone to access your emails.
In summary, it is required that health practitioners and small business owners ensure:
- Anti-virus software and an ad-blocking browser plugin is installed on computers to help prevent malware compromising business computers.
- All operating systems and application software on business computers are up-to-date.
- It is important to have a policy of strong passwords. Healthmail will enforce minimum password requirements. Passwords must be at least 8 characters in length and must include at least one uppercase letter, one lowercase letter, one number and one non alpha numeric character e.g. < ! + ? & ) $ *
- If a password is lost, it should be reset immediately. It is your responsibility to keep your password confidential.
- If you believe there is unauthorised use of your account, please contact the Healthmail support desk on 061 203779 immediately.
We are continually reviewing the security of Healthmail to provide confidentiality, integrity, and availability of your patient data.
Kind regards,
The Healthmail Team
Healthmail Notifications System
It is imperative that the appropriate measures are taken as a compromised Healthmail account could result in the account being disabled, which is the main mechanism for distributing patient prescriptions, and may take days to re-enable.
