In response to increased need for expedient and distant health treatments during the COVID-19 pandemic, the US Department of Health and Human Services (HHS) is temporarily giving HIPAA-covered entities greater leeway in the delivery of virtual care.
The agency says threat actors are targeting organizations' IT help desks with phone calls from a local area code claiming to be revenue cycle or administrator employees. After gaining access, they divert legitimate payments.