CMS warns of phishing fax scheme; AHA monitoring other reported social engineering schemes 

Jun 26, 2025 - 04:04 PM
Cybersecurity image of a digital lock

The Centers for Medicare & Medicaid Services today announced it has identified a fraud scheme targeting Medicare providers and suppliers. CMS said scammers are impersonating the agency, sending phishing fax requests for medical records and other documentation while falsely claiming to be part of a Medicare audit. CMS said it does not initiate audits by requesting medical records via fax. The agency advised against responding if someone suspects they received a suspicious request and to work with their medical review contractor to confirm the validity of the request. 
 
“In typical fashion, scammers are taking advantage of the latest headlines to steal funds and information from individuals and organizations,” said John Riggi, AHA national advisor for cybersecurity and risk.  
 
In addition to the fax scam, Riggi said the AHA continues to receive reports of increased social engineering schemes targeting hospital IT, human resources, vendor and patient portal help desks. “These schemes may involve a combination of phone, text and synthetic audio and video,” Riggi said. “Organizations should ensure strict multifactor authentication protocols are in place, train help desk staff on these schemes and enhance help desk challenge questions. If your organization becomes a victim of a social engineering scheme, report the incident to the FBI Internet Crime Complaint Center at www.ic3.gov.

For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity

Related News Articles

Headline
Phishing operation attacking at least 20 health care organizations disrupted by Microsoft
Microsoft Sept. 16 announced it had disrupted a growing phishing service that had targeted at least 20 U.S. health care organizations. The company said it used…
Headline
Hospital-at-home bill considered during House Ways and Means Committee markup
The AHA submitted a statement Sept. 17 for a House Ways and Means Committee markup session on a series of health care and other bills. Specifically, the AHA…
Headline
AHA supports bill expanding in-network providers within MA plans 
The AHA Sept. 15 expressed support for the Ensuring Access to Essential Providers Act, legislation that would require Medicare Advantage plans to cover…
Headline
AHA urges Aetna to rescind ‘level of severity inpatient payment’ policy
The AHA Sept. 15 urged Aetna to rescind its recently announced “level of severity inpatient payment” policy, saying that it “could erode the transparency…
Headline
FBI warns of cyber criminals targeting Salesforce platforms
The FBI Sept. 12 released an alert warning of malicious activities by cybercriminal groups UNC6040 and UNC6395, which the agency said are responsible for an…
Perspective
Hospital Outpatient Departments Are Different from Independent Physician Offices
Public
Every health care provider strives to deliver their patients the best possible care, but not all providers offer the same level or complexity of care. Current…