Sign In

Physicians warned about attempt to steal email data

After receiving calls from several physicians, the CMA is warning members about a recent phishing incident in which the goal was to steal members' email address data.

Phishing employs fraudulent email, web pages or text messages to gather people's personal, financial and other sensitive information, and one of its main goals is identity theft. Most commonly, targets receive spam email, text messages and pop-up windows that appear to come from legitimate businesses. Phishing has been used to trick people into sharing passwords and even social insurance, credit card and bank account numbers.

If you are suspicious about an email that appears to have been sent by the CMA or MD Financial Management (MDFM), please contact the Member Service Centre at or 1-888-855-2555.

Tips to avoid getting caught by phishing

  • Do not provide confidential personal or financial information to anyone via an email. No one from the CMA or MDFM ​will ever email to ask you for passwords, account numbers or personal information via email.
  • Do not include your account number or password in emails.
  • Be suspicious of email attachments from unknown sources. If you do not know or recognize the sender of the email, do not open the attachment.
  • If you are unsure of an email's authenticity, delete it.
  • Do not set your email program to "auto-run" attachments. Always check that emails you have received do not contain viruses by running your anti-virus software when an email attachment is received.
  • Ignore all emails with links to websites requesting personal or financial information. If you receive one, delete it immediately.
  • If you are suspicious about an email that appears to have been sent by the CMA or MD Financial Management, contact the Member Service Centre immediately ( or 1-888-855-2555).

Forward any comments about this article to: