The FBI has received multiple reports of cyber criminals increasingly targeting healthcare payment processors to redirect victim payments. In each of these reports, unknown cyber criminals used employees’ publicly-available Personally Identifiable Information (PII) and social engineering techniques to impersonate victims and obtain access to files, healthcare portals, payment information, and websites. In one case, the attacker changed victims’ direct deposit information to a bank account controlled by the attacker, redirecting $3.1 million from victims’ payments.
To learn more about this serious threat and how to reduce the risk of similar cyber threats, click here. For additional information, visit AHA’s website for resources that hospitals and health systems can use to protect themselves from online cyber threats.