Phishing and Co.: how to protect yourself from fake emails
Fake emails circulate time and again, under Sympany’s name, or under the names of other health insurers and debt collection companies. Mostly it’s about invoices or reminders and the recipients are prompted to open an attachment or click on a link. Please do not open any attachments or click on any links. It could be a case of phishing (tapping access data, payment information, etc.) or malware (installation of damaging software).
The following applies for each email (not just from Sympany): look at it carefully. Phishing emails can sometimes be difficult to identify. If something seems strange to you, don’t click anywhere, don’t answer the email and ask the sender directly.
How Sympany policyholders can protect themselves
Check the sender
Sympany sends emails from the domain @sympany.ch. However, this alone is not a secure feature, so please also note the following points.
E-mail attachments
Sympany only sends invoices in an attachment upon request. If you’re not expecting an e-mail with an attachment, don’t open it.
Links or buttons in e-mails
Sympany never sends links to invoices or download buttons to display invoices.
Debt collection notice? Paper!
You will always receive a debt collection notice from Sympany by post – even if you receive all other documents in mySympany in digital form.
mySympany
Even notifications from mySympany, for example, when you receive a new invoice, never contain a link, just a reference to mySympany. Enter the URL https://my.sympany.ch manually in your browser or open the mySympany app from the App Store or Google Play Store.
Two-level login
Enable two-factor authentication for your mySympany login. This means your data is better protected against theft.
Uncertain? Then ask!
If an e-mail appears dubious, don’t answer it. The best thing to do is to ask us – the most secure way is by sending a message from mySympany, or alternatively to E-Mail, via the contact form or by phone: +41 58 262 42 00.
How to recognise phishing attacks
You can find tips on how to identify fake e-mails, for example, at iBarry or Microsoft: