Recent health data breaches involving phishing schemes are reminders of the persistent threat email-related scams pose to healthcare organizations – and the urgent need to mitigate that threat.
The agency says threat actors are targeting organizations' IT help desks with phone calls from a local area code claiming to be revenue cycle or administrator employees. After gaining access, they divert legitimate payments.