2022, Fraud and Licensing - Health Care Compliance Brief

Fraud Indicators and Red Flags

AIHC

FEBRUARY 17, 2025

When Audit Managers Knowingly Skew Audit Results Written by Carl J Byron , CCS, CHA, CIFHA, CMDP, CPC, CRAS, ICDCTCM/PCS, OHCC and CPT/03 USAR FA (Ret) Fraud cannot be eliminated. No system is completely fraud-proof, as any system can be bypassed or manipulated. on fraud detection and prevention in healthcare.

Fraud

Fraud Compliance Overpayments Overpayment

Ongoing License Monitoring Critical to Prevent Healthcare Fraud

Provider Trust

SEPTEMBER 29, 2022

Mendez, who was a physician assistant at CCI Therapy Counseling Centers International, was working with a suspended medical license. However, despite his suspended medical license, Mendez continued to treat patients at various mental health clinics in Brownsville, Harlingen, and Pharr, TX. How Often Should You Verify Employee Licenses?

Licensing

Licensing Fraud Medicaid Medicaid

Editorial: Lessons from Biggest HIPAA Breaches of 2022

HIPAA Journal

DECEMBER 23, 2022

It has been another bad year for healthcare data breaches, with some of the biggest HIPAA breaches of 2022 resulting in the impermissible disclosure of well over a million records. In addition to the high number of data breaches, 2022 stands out for the sheer number of healthcare records breached, which currently stands at 49.8

HIPAA

HIPAA Ransomware Health Insurance Compliance

Webinars

Bridging Innovation & Patient Care: The Growing Role of AI

MORE WEBINARS

Medicaid Fraud Control Unit’s 2022 Annual Report Key Takeaways

Provider Trust

MAY 9, 2023

What is a Medicaid Fraud Control Unit (MFCU)? Fraud and abuse are unfortunate realities of the healthcare industry. Hundreds of claims and investigations are carried out yearly to combat the growing number of providers, organizations, and entities contributing to fraud and abuse within state and federal healthcare programs.

Fraud

Fraud Medicaid Medicaid Nurses

Health Systems Cite Telehealth as Top Tool to Improve Patient Access in 2022

HIT Consultant

DECEMBER 10, 2021

What You Should Know: – Improving patient access to medical services is a top priority for health system leaders in 2022, according to new research from the Center for Connected Medicine (CCM) and KLAS Research. Fraud Schemes in a Telehealth Era: What Healthcare Payers Should Know. Licensed Clinical Social Worker.

COVID-19

COVID-19 Fraud Nurses Licensing

70,000 Valle del Sol Community Health Patients Affected by Cyberattack

HIPAA Journal

OCTOBER 17, 2022

Valle de Sol did not state in its notification letters when hackers gained access to its network, or for how long they had access, but did confirm that the unauthorized activity was detected on January 25, 2022. A comprehensive review was conducted of all files that may have been accessed, which was completed on July 18, 2022.

Health Insurance

Health Insurance Licensing Fraud HIPAA

Licensed Professional Counselor Sentenced to Prison for $1.3 Million Medicaid Fraud Scheme

The Health Law Firm Blog

JULY 13, 2023

Board Certified by The Florida Bar in Health Law On March 13, 2022, a licensed professional counselor (LPC) was sentenced to nearly five years in prison for defrauding the Connecticut Medicaid Program of more than $1.3 By George F. Indest III, J.D., million, announced the U.S. Attorney for the U.S. District of Connecticut. [.]

Licensing

Licensing Medicaid Medicaid Fraud

Dental Fraud Schemes Uncovered

Compliancy Group

FEBRUARY 16, 2024

This month, fraud in the medical industry has been making headlines fairly frequently. In one case, the dentist himself was involved, practicing on a revoked license. We also covered two Medicaid fraud schemes , one resulting in billions of dollars in billing for medical supplies that were never received.

Fraud

Fraud Licensing Medicaid Medicaid

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

HIPAA Journal

NOVEMBER 16, 2022

According to the breach report filed with the Maine Attorney General, it took until October 3, 2022, to confirm that an unauthorized third party had accessed the email system, which included sensitive information of its members. Notification letters were sent to affected individuals on October 31, 2022.

HIPAA

HIPAA Licensing Health Insurance Fraud

Data Breaches Reported by Henderson & Walton Women’s Center & Genesis Health Care Inc.

HIPAA Journal

SEPTEMBER 9, 2022

That process concluded on June 24, 2022. Those emails contained patient information such as names, dates of birth, Social Security numbers, medical information, health insurance information, driver’s license numbers, and state ID numbers. The information exposed varied from patient to patient.

Licensing

Licensing Health Insurance Fraud HIPAA

Avem Health Partners and Emory Healthcare Notify Patients About Data Breaches

HIPAA Journal

DECEMBER 19, 2022

On September 9, 2022, 365 Data Centers notified Avem Health Partners that an unauthorized third party had gained access to its servers. The breach was detected on May 16, 2022, with the investigation confirming there may have been unauthorized access to data stored on those servers prior to May 14, 2022. The DOL and the U.S.

Fraud

Fraud Licensing HIPAA Health Insurance

SAC Health Theft Incident and Multiple Ransomware Attacks Reported

HIPAA Journal

MAY 25, 2022

The break-in was discovered on March 4, 2022, with the subsequent investigation confirming on April 22, 2022, that six boxes of paper documents had been stolen from the facility, which included files relating to patients served by SAC Health in 1997 and between 2006 and 2020. Lifespan Services Suffers Ransomware Attack.

Ransomware

Ransomware Fraud HIPAA Licensing

877,500 Individuals Affected by Ransomware Attack on Prosthetics & Orthotics Provider

HIPAA Journal

NOVEMBER 23, 2022

The attack occurred between January 26 and January 28, 2022, and while the attack was detected by the firm’s endpoint security solution shortly after the ransomware was executed, it was not possible to prevent the encryption of certain files on its network.

Ransomware

Ransomware Fraud Licensing HIPAA

BJC Healthcare Settles Data Breach Lawsuit Stemming from 2020 Phishing Attack

HIPAA Journal

JULY 20, 2022

While data theft could not be determined, the affected email accounts contained the protected health information of patients of 19 of its hospitals, including names, birth dates, health insurance information, Social Security numbers, driver’s license, and healthcare data. The lawsuit, filed in the Circuit Court of the City of St.

Fraud

Fraud Licensing HIPAA Health Insurance

Home Care Providers of Texas Announces 124K-Record Data Breach

HIPAA Journal

JANUARY 17, 2023

The security breach was detected on June 29, 2022, when staff members were prevented from accessing files. Leading third-party cybersecurity experts were engaged to investigate the incident and determine the nature and scope of the breach and confirmed that the threat actors had access to its network between June 15, 2022, and June 29, 2022.

Ransomware

Ransomware Fraud HIPAA Licensing

Understanding the Medicaid Fraud Control Unit’s 2023 Annual Report

Provider Trust

APRIL 30, 2024

This year, as always, the Medicaid Fraud Control Units (MFCUs) released an annual report dissecting the exclusions, enforcements, and overall takeaways from their work throughout the previous fiscal year (FY). MFCUs reported 1,143 total convictions in FY 2023—a marked decrease from 1,327 convictions in FY 2022.

Fraud

Fraud Medicaid Medicaid Licensing

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

HIPAA Journal

MARCH 25, 2022

Ultimate Care said no reports have been received that indicate there has been any misuse of patient information; however, as a precaution against identity theft and fraud, individuals whose Social Security numbers were impacted have been offered complimentary one-year memberships with a credit monitoring service.

Health Insurance

Health Insurance Licensing Ransomware Fraud

SuperCare Health Sued Over 318,000-Record Data Breach

HIPAA Journal

APRIL 15, 2022

A lawsuit has been filed against the in-home respiratory care provider, SuperCare Health, over a cyberattack and data breach that was reported to the Department of Health and Human Services on March 28, 2022. A subset of individuals also had their Social Security numbers and/or driver’s license numbers exposed.

Electronic Medical Records

Electronic Medical Records HIPAA Health Insurance Fraud

Up to 170,450 Patients Affected by Cyberattack on the Chattanooga Heart Institute

HIPAA Journal

AUGUST 2, 2023

Notification letters will be sent to the affected individuals in the coming weeks and credit monitoring, fraud consultation, and identity theft restoration services will be offered. A third-party data review company was provided with the files on December 22, 2022, and provided the results of the analysis to SHS on May 16, 2023.

Licensing

Licensing Electronic Medical Records Ransomware Health Insurance

States Take Action to Stop Nurses From Certain Schools From Caring For Patients

The Health Law Firm

MARCH 9, 2023

Board Certified by The Florida Bar in Health Law In late February 2023, multiple states began taking action against licensed practical nurses (LPNs) and registered nurses (RNs) because of the FBI's "Operation Nightingale." Indest III, J.D., This is also being pushed by the National Council of State Boards of Nursing (NCBSN).

Nurses

Nurses Licensing Fraud

Licensed Professional Counselor Sentenced to Prison for $1.3 Million Medicaid Fraud Scheme

The Health Law Firm Blog

APRIL 18, 2022

Board Certified by The Florida Bar in Health Law On March 13, 2022, a licensed professional counselor (LPC) was sentenced to nearly five years in prison for defrauding the Connecticut Medicaid Program of more than $1.3 By George F. Indest III, J.D., million, announced the U.S. Attorney for the U.S. District of Connecticut. [.].

Licensing

Licensing Medicaid Medicaid Fraud

Spokane Regional Health District Announces Second Phishing Attack in 3 Months

HIPAA Journal

APRIL 1, 2022

On March 24, 2022, SRHD announced that its IT department discovered a compromised email account, with the investigation recently confirming that the employee responded to a phishing email on February 24, 2022, and disclosed credentials that allowed the account to be accessed.

Fraud

Fraud HIPAA Licensing Health Insurance

The Future of Telemedicine Post-PHE and How to Advocate for Change: An interview with Nathaniel Lacktman

Healthcare Law Today

DECEMBER 22, 2022

Department of Health and Human Services Office of Inspector General (HHS-OIG) Special Fraud Alert on telefraud, and the rise of asynchronous telehealth, among other topics. In July 2022, HHS-OIG published a Special Fraud Alert about arrangements with telemedicine companies to serve as an extra level of guidance to the industry at large.

Telemedicine

Telemedicine Fraud Doctors COVID-19

Six Data Breaches Reported by Healthcare Providers and Business Associates

HIPAA Journal

DECEMBER 20, 2022

Work Health Solutions, a San Jose, CA-based occupational health services provider, has confirmed that the protected health information of 13,157 individuals has been exposed and potentially obtained by unauthorized individuals who had access to an employee email account between February 16, 2-022 and March 24, 2022.

Health Insurance

Health Insurance Licensing Hospitals Fraud

License Verification and Monitoring Critical Amidst Healthcare Labor Shortages

Provider Trust

APRIL 26, 2023

However, this solution comes with its share of compliance risks, especially if interstate licenses are involved. Nurse Strikes and Interim Solutions Present Licensure Challenges In 2021 and 2022, hospitals like Mount Sinai in New York and St. It’s no wonder nurse strikes have been on the rise.

Licensing

Licensing Nurses Compliance COVID-19

Advent Health Partners Proposes $500,000 Settlement to Resolve Class Action Data Breach Lawsuit

HIPAA Journal

FEBRUARY 16, 2023

The investigation confirmed hackers had access to, and potentially stole, the protected health information of patients such as names, Social Security numbers, driver’s license information, dates of birth, health insurance, medical treatment information, and financial account information. A lawsuit – McHenry v.

HIPAA

HIPAA Fraud Licensing Health Insurance

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

HIPAA Journal

DECEMBER 7, 2022

In October 2022, Urology of Greater Atlanta in Georgia reported a data breach to the HHS’ Office for Civil Rights that had affected 79,795 patients. In some cases, Social Security numbers, driver’s license numbers, or financial account information, were also exposed. At the time it was unclear exactly how that information was breached.

COVID-19 Vaccine

COVID-19 Vaccine COVID-19 Department of Veterans Affairs Licensing

Class Action Lawsuit Filed Against Cardiovascular Associates Over 441K-Record Data Breach

HIPAA Journal

MARCH 22, 2023

The plaintiff and class members now face an increased risk of identity theft and fraud as their private information is now in the hand of cybercriminals. Cardiovascular Associates in Alabama is facing a class action lawsuit over a recently reported hacking incident in which patients protected health information (PHI) was stolen.

HIPAA

HIPAA Fraud Licensing Health Insurance

The Payment Integrity Game-Changer: Generative AI

Healthcare IT Today

FEBRUARY 9, 2024

A 2022 Deloitte survey of U.S. Even worse, up to 10% of this spending is rife with waste, abuse, and fraud. For health payers and agencies, AI so far has been mostly applied to claims processing, member engagement, and identification of suspected cases of fraud, waste, and abuse. In other words, nearly half of all U.S.

Fraud

Fraud Governance Hospitals Licensing

Up to 184,000 Clients of Lutheran Social Services of Illinois Impacted by Ransomware Attack

HIPAA Journal

JANUARY 27, 2023

The cyberattack was detected on January 27, 2022, and systems were taken offline to contain the attack. Data theft could not be ruled out, but at the time of issuing notifications, no reports had been received to suggest that sensitive information has been used for identity theft or fraud.

Ransomware

Ransomware HIPAA Fraud Licensing

Schneck Medical Center Settles HIPAA Lawsuit with Indiana AG

HIPAA Journal

SEPTEMBER 12, 2023

The information stolen in the attack included names, addresses, dates of birth, Social Security numbers, driver’s license numbers, financial account information, payment card information, diagnoses, and health insurance information.

HIPAA

HIPAA Ransomware Health Insurance Fraud

Lawsuit Filed Against Conifer & Tenet Healthcare Over Email Account Breach

HIPAA Journal

APRIL 18, 2023

The lawsuit was filed in response to a breach of a Microsoft 365-hosted business email account that was detected on April 14, 2022. The lawsuit alleges the plaintiff and class members face imminent and impending injury from the increased risk of identity theft and fraud. Klinger of Milberg Coleman Bryson Phillips Grossman.

HIPAA

HIPAA Fraud Licensing Health Insurance

Nursing Home Investigation Leads to Michigan Sentinel Project’s First Criminal Case

Healthcare Compliance Blog

MARCH 10, 2022

Complaints of resident abuse in a Michigan nursing home led to an investigation by the Michigan Office of Attorney General’s Health Care Fraud Division, working with the Michigan Sentinel Project. The investigation determined that a nurse was working at the nursing home while her license was suspended, which is a felony.

Nursing Homes

Nursing Homes Nurses Licensing Fraud

277,000 Santa Clara Family Health Plan Members Affected by GoAnywhere Hack

HIPAA Journal

APRIL 25, 2023

The email account breach was detected on February 13, 2023, and the forensic investigation confirmed the email account was accessed between June 16, 2022, and July 18, 2022. TRPHD said suspicious activity was detected within its server infrastructure on November 9, 2022.

Health Insurance

Health Insurance Public Health Ransomware Fraud

New York Provider of Administrative Anesthesiology Services Facing Multiple Class Action Data Breach Lawsuits

HIPAA Journal

NOVEMBER 15, 2022

Anesthesiology firms started reporting data breaches to the Department of Health and Human Services’ Office for Civil Rights in September 2022, with the notification letters to patients indicating there had been a data breach at their anesthesia management services organization. The notification letters failed to name that company.

HIPAA

HIPAA Fraud Licensing Health Insurance

Prosecution Against Unlicensed Nurse Points to Urgent Need for Continuous Credential Monitoring

Provider Trust

JANUARY 18, 2023

In October 2022, the South Carolina Medicaid Fraud Control Unit (SCMFCU) arrested a 37-year-old South Carolina woman named Alyssa Beth Steele for working as a registered nurse despite not having a license. Pursuant to federal regulations, the SCMFCU is authorized to investigate and prosecute any acts of Medicaid provider fraud.

Nurses

Nurses Licensing Fraud Medicaid

559,000 Individuals Affected by Murfreesboro Medical Clinic & SurgiCenter Cyberattack

HIPAA Journal

JULY 4, 2023

As a precaution against identity theft and fraud, affected individuals have been offered 24 months of complimentary credit monitoring services. In March 2022, an unauthorized individual accessed the email account of an employee.

Medicaid

Medicaid Medicaid Health Insurance Licensing

Cyberattacks Reported by Wolfe Clinic, Reiter Affiliated Companies, & SERV Behavioral Health System

HIPAA Journal

SEPTEMBER 28, 2022

At the time of issuing notifications, Wolfe Clinic had not received any reports of identity theft and fraud related to the Eye Care Leaders data breach. Reiter Affiliated Companies Reports June 2022 Cyberattack. The attack was detected on July 4, 2022, when certain systems were made unavailable. million patients.

Electronic Medical Records

Electronic Medical Records Ransomware Fraud HIPAA

Preventing Unlicensed Individuals and Subsequent Fraudulent Claims Submission

Provider Trust

JULY 26, 2022

On June 7, 2022, Theresa Pickering of Norcross, Georgia was indicted by a federal grand jury on federal charges of health care fraud, aggravated identity theft, and distribution of controlled substances. In addition to these allegations of fraud, waste, and abuse, Pickering had a history of fraud. According to the U.S.

Licensing

Licensing Fraud Compliance Nurses

HHS OIG Signs Off on Substance Use Recovery Incentive Program

Healthcare Law Blog

MARCH 24, 2022

The Requestor’s enrollment specialist, under the guidance of a licensed clinical supervisor, determines the type of services and frequency of recovery coaching using an evidence-based, automated algorithm. Therefore, the OIG determined that the risk is low an entity would become a Customer to “generate business or reward referrals.”.

Fraud

Fraud Licensing

Patient Data Compromised in 5 Hacking Incidents, Ransomware Attacks, and Break-ins

HIPAA Journal

NOVEMBER 17, 2022

Salud Family Health Provides Update on September 2022 Ransomware Attack. Colorado-based Salud Family Health, a Federal Qualified Health Center (FQHC), has recently provided an update on a September 2022 cyberattack and has confirmed that patient data was potentially stolen.

Ransomware

Ransomware Health Insurance Fraud HIPAA

Boston Registered Nurse Pleads Guilty to Tampering with a Narcotic

Healthcare Compliance Blog

MARCH 11, 2022

A Boston registered nurse (RN) has pled guilty to one count of tampering with a consumer product and one count of obtaining a controlled substance by fraud and deception. The RN is scheduled for sentencing in August 2022. On November 6, 2020, the RN was working the night shift on a dementia unit in the nursing home.

Nurses

Nurses Nursing Homes Fraud Licensing

Evergreen Treatment Services Hacking Incident Affects 21K Patients

HIPAA Journal

MARCH 2, 2023

A third-party cybersecurity firm assisted with the investigation but found no instances of fraud or identity theft; however, as a precaution, the 21,325 affected patients have been offered complimentary credit monitoring and identity theft protection services.

Medicare

Medicare Medicare Fraud HIPAA

How Will New FDA Hearing Aid Regulations Impact Health Plans?

HIT Consultant

NOVEMBER 24, 2022

. – Prescription hearing aids will require a consumer to have a prescription for a hearing aid from a physician, audiologist or a licensed hearing instrument specialist. As of now, there are no OTC hearing aid products on the market since the rules didn’t go into effect until October 17, 2022. – Fraud.

FDA

FDA Public Health Fraud Medicare

Fraud Indicators and Red Flags

Ongoing License Monitoring Critical to Prevent Healthcare Fraud

Webinars

Trending Sources

Editorial: Lessons from Biggest HIPAA Breaches of 2022

Webinars

Medicaid Fraud Control Unit’s 2022 Annual Report Key Takeaways

Health Systems Cite Telehealth as Top Tool to Improve Patient Access in 2022

70,000 Valle del Sol Community Health Patients Affected by Cyberattack

Licensed Professional Counselor Sentenced to Prison for $1.3 Million Medicaid Fraud Scheme

Dental Fraud Schemes Uncovered

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

Data Breaches Reported by Henderson & Walton Women’s Center & Genesis Health Care Inc.

Avem Health Partners and Emory Healthcare Notify Patients About Data Breaches

SAC Health Theft Incident and Multiple Ransomware Attacks Reported

877,500 Individuals Affected by Ransomware Attack on Prosthetics & Orthotics Provider

BJC Healthcare Settles Data Breach Lawsuit Stemming from 2020 Phishing Attack

Home Care Providers of Texas Announces 124K-Record Data Breach

Understanding the Medicaid Fraud Control Unit’s 2023 Annual Report

Email Incidents Reported by Ultimate Care, CareOregon Advantage, and University Medical Center Southern Nevada

SuperCare Health Sued Over 318,000-Record Data Breach

Up to 170,450 Patients Affected by Cyberattack on the Chattanooga Heart Institute

States Take Action to Stop Nurses From Certain Schools From Caring For Patients

Licensed Professional Counselor Sentenced to Prison for $1.3 Million Medicaid Fraud Scheme

Spokane Regional Health District Announces Second Phishing Attack in 3 Months

The Future of Telemedicine Post-PHE and How to Advocate for Change: An interview with Nathaniel Lacktman

Six Data Breaches Reported by Healthcare Providers and Business Associates

License Verification and Monitoring Critical Amidst Healthcare Labor Shortages

Advent Health Partners Proposes $500,000 Settlement to Resolve Class Action Data Breach Lawsuit

COVID-19 Vaccination Statuses of 500,000 VA Employees have been Impermissibly Disclosed

Class Action Lawsuit Filed Against Cardiovascular Associates Over 441K-Record Data Breach

The Payment Integrity Game-Changer: Generative AI

Up to 184,000 Clients of Lutheran Social Services of Illinois Impacted by Ransomware Attack

Schneck Medical Center Settles HIPAA Lawsuit with Indiana AG

Lawsuit Filed Against Conifer & Tenet Healthcare Over Email Account Breach

Nursing Home Investigation Leads to Michigan Sentinel Project’s First Criminal Case

277,000 Santa Clara Family Health Plan Members Affected by GoAnywhere Hack

New York Provider of Administrative Anesthesiology Services Facing Multiple Class Action Data Breach Lawsuits

Prosecution Against Unlicensed Nurse Points to Urgent Need for Continuous Credential Monitoring

559,000 Individuals Affected by Murfreesboro Medical Clinic & SurgiCenter Cyberattack

Cyberattacks Reported by Wolfe Clinic, Reiter Affiliated Companies, & SERV Behavioral Health System

Preventing Unlicensed Individuals and Subsequent Fraudulent Claims Submission

HHS OIG Signs Off on Substance Use Recovery Incentive Program

Patient Data Compromised in 5 Hacking Incidents, Ransomware Attacks, and Break-ins

Boston Registered Nurse Pleads Guilty to Tampering with a Narcotic

Evergreen Treatment Services Hacking Incident Affects 21K Patients

How Will New FDA Hearing Aid Regulations Impact Health Plans?

Stay Connected