<- Back to Insights
July 1, 2024
Hackers targeting healthcare in order to divert payments
Becker's Hospital Review
|
Summary
The FBI and HHS have issued a joint alert warning healthcare leaders about a sophisticated social engineering campaign whereby hackers are using phishing schemes to steal login credentials, permitting unauthorized access and diversion of ACH payments. The attackers manipulate IT help desks, register lookalike phishing domains, and use data from breaches to confirm employee identities. Once access is gained, they use techniques that blend malicious activities with normal operations to amend payment forms and redirect funds to hacker-controlled accounts. Healthcare leaders are advised to implement email security, multifactor authentication, and centralized log collection to mitigate these threats.
Explore Related Topics