Doctolib Hit by Phishing Scam! How to Protect Yourself from Fraud?

Regrettably, this practice has become common. Over the past few weeks, a new wave of phishing attempts has targeted users of Doctolib. Fraudulent messages impersonate the medical appointment platform to steal personal data.

Messages Mimicking Official Communications

Doctolib, one of the most widely used online health services in France, has issued a warning via email about an ongoing phishing campaign designed to deceive users with fake messages that appear to be from the service.

Cybercriminals are dispatching bogus emails and SMS that mimic the regular communications of Doctolib, aiming to gather sensitive information such as login details, medical or financial data.

Smart Practices to Follow

To minimize risks, Doctolib advises a few simple yet crucial rules: like not sharing your login credentials or personal information, even if the message seems legitimate. Also, do not click on any suspicious links in emails or sketchy SMS (even to verify the source). Lastly, never respond to an unusual or unsolicited request.

If in doubt, there’s only one strategy to employ—and this applies to any website—: go directly to the official site (or app) to check your account. Specifically, verify all online appointments made for you and your family on your Doctolib account to ensure their authenticity. If deceived, it is important to report any suspicious messages to customer service.

Ever-Increasing Vigilance is Necessary

With the proliferation of online services in the health sector, phishing attempts are becoming increasingly sophisticated. Identity theft, fake medical appointments, and malicious links: the methods are rapidly evolving.

This phishing campaign targeting Doctolib is just another reminder of the need to strengthen daily cybersecurity practices, for both professionals and patients.