CMS warns of phishing fax scheme; AHA monitoring other reported social engineering schemes 

Jun 26, 2025 - 04:04 PM
Cybersecurity image of a digital lock

The Centers for Medicare & Medicaid Services today announced it has identified a fraud scheme targeting Medicare providers and suppliers. CMS said scammers are impersonating the agency, sending phishing fax requests for medical records and other documentation while falsely claiming to be part of a Medicare audit. CMS said it does not initiate audits by requesting medical records via fax. The agency advised against responding if someone suspects they received a suspicious request and to work with their medical review contractor to confirm the validity of the request. 
 
“In typical fashion, scammers are taking advantage of the latest headlines to steal funds and information from individuals and organizations,” said John Riggi, AHA national advisor for cybersecurity and risk.  
 
In addition to the fax scam, Riggi said the AHA continues to receive reports of increased social engineering schemes targeting hospital IT, human resources, vendor and patient portal help desks. “These schemes may involve a combination of phone, text and synthetic audio and video,” Riggi said. “Organizations should ensure strict multifactor authentication protocols are in place, train help desk staff on these schemes and enhance help desk challenge questions. If your organization becomes a victim of a social engineering scheme, report the incident to the FBI Internet Crime Complaint Center at www.ic3.gov.

For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity

Related News Articles

Headline
DOJ updates Title II web, app nondiscrimination rule timelines for state and local governments; HHS Section 504 rules remain unchanged
As published April 20, the Department of Justice released an interim final rule in the Federal Register to delay compliance dates for states and local…
Headline
AHA releases Q1 2026 Health Care Plan Accountability Update
The AHA today released its Health Care Plan Accountability Update, covering the latest developments in Medicare Advantage, legislation and…
Headline
UnitedHealth to expand rural payment acceleration pilot program
UnitedHealth Group announced plans to expand its Rural Payment Acceleration Pilot to reduce Medicare Advantage payment processing times for…
Headline
FBI Co-deputy Director Andrew Bailey discusses current cyber and physical threats, rise of AI
FBI Co-deputy Director Andrew Bailey discussed a rise in cyber and physical threats impacting health care. He discussed health care as the top critical…
Headline
Coalition, including AHA, expresses support for bill waiving cost-sharing requirements for chronic care management services
The AHA and dozens of other organizations April 14 sent a letter of support to Reps. Suzan DelBene, D-Wash., and Mike Kelly, R-Pa., for their introduction…
Headline
FBI: Health care was top target for ransomware, other cyberthreats in 2025 
Health care and public health was the top sector targeted for cyberthreats in 2025, according to the FBI’s latest annual report on internet crimes. There were…