Be Aware of the Fake Doctolib Email a new Phishing Attack

Watch out for the Fake Doctolib email a new Phishing Attack

Doctolib Email a new Phishing Attack is raging on the web at the moment. The operators behind this operation are using fake email taking on the appearance of Doctolib, the application that allows you to manage your health appointments, or easily find your medical documents.

As you may know, many medical practices today use Doctolib to communicate with their patients. You have probably already had to go through this platform, by email or via the Android and iOS application. Due to its popularity, Doctolib has become a prime target for crooks and hackers.

Crooks hijack Doctolib’s interface

Several Internet users say they have received an email supposedly from Doctolib, confirming their appointment on such and such a date and at such time. These users were surprised to receive this message, even though they had not seen a doctor recently. However, the email seems authentic: the same graphic charter, same logo, and the email address [email protected]

However, some Internet users preferred to do things correctly and decided to click on the link to cancel the appointment in the email. This is where the trap closes since this link redirects users to a computer support scam site. Here, the victim comes across a web page that is displayed on the full screen.

A slightly anxiety-provoking message then appears warning you that ” your computer has been infected” and that ” the following data may be compromised: passwords, browser history, sensitive information (credit cards), files on the hard drive”.

A scam for an antivirus billed for several hundred euros

Then the crooks invite the victims to call a phone number within 5 minutes for an ” engineer” to take care of clearing the blockage. Of course, don’t click and call this number. If you do, you will indeed find someone on the phone who will sell you an antivirus solution that costs several hundred dollars to unblock the situation. Only there is no virus to eradicate.

Our colleagues from the Numerama site contacted Doctolib, who claimed to be aware of this phishing campaign. The French company claims to have taken the necessary measures to protect the victims and prevent similar operations from happening again:

“ We contacted the email providers affected by the hack, as well as patients identified as having had their email hacked. We recommend security measures to them (change their email password, email provider alert, installation of an antivirus) and we have set up an FAQ to guide our users, ” explains Doctolib in the comments. columns of Numerama.