HealthEquity: Notification of Phishing Scam

Protecting the security of employer and employees’ personal information is HealthEquity’s highest priority. As fraudsters are widening their nets to target all financial institutions, HealthEquity has received reports of phishing scams targeting HealthEquity account holders. These fraudsters are sharing and selling contact information obtained illegally.

Key Facts

→ In 2015, Intel Security conducted a phishing study of over 19,000 people world-wide. More than 80% missed at least one question related to phishing emails. It only takes one click for a member to provide their information unknowingly and they’ve been hooked.

→ The number of detected phishing sites in March 2016 was 277% higher than in November 2015.

HealthEquity has created where members can find the following information.

  • Education on phishing
  • Tips to spot “phishy” emails
  • Identifying a secured webpage vs. spoofed login page
  • How members should protect their HealthEquity account
  • How to report phishing

Key security tips and the resource page will be included with our annual privacy notice mailing in September’s statements. Members that have opted into eStatements will receive an email in October.


The information provided herein is intended solely for the use of our clients. You may not display, reproduce, copy, modify, license, sell or disseminate in any manner any information included herein, without the express permission of the Publisher or Publishers of articles within.

The information provided is for informational purposes only and does not constitute legal advice. The information above contains only a summary of the applicable legal provisions and does not purport to cover every aspect of any particular law, regulation or requirement. Depending on the specific facts of any situation, there may be additional or different requirements. This is to be used only as a guide and not as a definitive description of your compliance obligations.