A California-based medical supply firm and a medical center in Missouri have reported health data breaches that each affected more than 100,000 individuals.
The agency says threat actors are targeting organizations' IT help desks with phone calls from a local area code claiming to be revenue cycle or administrator employees. After gaining access, they divert legitimate payments.