FBI: Cyber criminals targeting healthcare payment processors
Editor's Note
According to a September 14 FBI report, cyber criminals are increasingly targeting healthcare payment processors to redirect payments intended for healthcare providers to accounts they control, the American Hospital Association (AHA) September 16 reports.
At least 68 attacks have occurred since June 2018, in which unknown cyber criminals used publicly available personally identifiable information and social engineering techniques to impersonate and access victims accounts, according to the alert. They recommend actions to help network defenders reduce the risk of compromise.
John Riggi, AHA’s national advisor for cybersecurity and risk, explained that this scheme, also known as business email compromise (BEC), presents another risk to the nation’s hospital and health systems.
“Employees should be sensitized to the various types of social engineering BEC techniques, and how publicly available and social media information they post can be used by criminals in this scheme to steal funds,” Riggi said. “To help mitigate this threat, it is recommended that both hospitals and payment processors strictly require verbal authentication from at least two known parties before any payment instructions are changed.”
Free Daily News
- Study finds workforce readiness gap in new nurses
- Joint replacement manufacturer recalls products after FDA packaging warning
- Gene-edited pig kidney, heart pump combined in transplant surgery milestone
- Catheter sterility concerns prompt Class 1 FDA recall for surgery trays
- Large amounts of personal data possibly stolen in Change Healthcare cyberattack
- AI model helps predict patient decline, drive collaborative care
- One patient’s recovery highlights benefits of outpatient endoscopic spine surgery
- Getting ready for the OAS CAHPS Survey 2025 requirement
- Contribute to perioperative education with the 2024 OR Manager Salary/Career Survey
- Supply chain stability improves, but threats remain