OCR: Phishing email targeting HIPAA covered entities

Nov 29, 2016 - 03:45 PM

The Department of Health and Human Services’ Office for Civil Rights yesterday alerted the public to a phishing email targeting employees of entities covered by the Health Insurance Portability and Accountability Act and their business associates. The email appears to be an official government communication from OCR Director Jocelyn Samuels and prompts recipients to click a link regarding possible inclusion in the HIPAA Privacy, Security, and Breach Rules Audit Program, the agency said. However, the link directs individuals to a non-governmental website marketing a firm’s cybersecurity services. “In no way is this firm associated with the U.S. Department of Health and Human Services or the Office for Civil Rights,” the agency said. Organizations with questions as to whether they have received an official communication from the agency regarding a HIPAA audit may email the agency at OSOCRAudit@hhs.gov.

Related News Articles

Headline
Senate HELP Committee approves HHS assistant director nominee
The Senate Health, Education, Labor and Pensions Committee yesterday voted 12-11 along party lines to recommend the confirmation of Brian Christine, M.D., to…
Headline
63 million Americans are family caregivers
A report from AARP and the National Alliance for Caregiving released today found nearly 1 in 4 U.S. adults (63 million) are caring for an adult or child…
Perspective
Delivering Safe, Quality Care to Patients Is the Top Priority for Hospitals and Health Systems
Public
The 2025 AHA Leadership Summit wrapped up on July 22, and as always, it was energizing and inspiring to connect with so many talented and dedicated people…
Headline
FDA issues most serious recall for Edwards Lifesciences cannulas
The Food and Drug Administration has identified a Class I recall of Edwards Lifesciences OptiSite Arterial Perfusion Cannula devices due to the potential for…
Headline
Microsoft says China-based threat actors behind SharePoint attacks 
Microsoft July 22 released an update on the ongoing cyberattacks to SharePoint servers used within organizations, attributing the incidents to China-based…
Headline
Agencies warn of activity by Interlock ransomware
The FBI, Cybersecurity and Infrastructure Security Agency, Department of Health and Human Services, and Multi-State Information Sharing and Analysis Center…