The Federal Bureau of Investigation (FBI) has issued a warning to Americans about cybercriminals impersonating health fraud investigators and legitimate health insurers to steal sensitive information. In these scams, criminals send emails and text messages that appear to come from trusted healthcare authorities or insurers, pressuring victims—including both patients and healthcare providers—into disclosing protected health information, medical records, or personal financial details.
These fraudulent messages often claim to be part of an investigation, audit, or reimbursement process, sometimes alleging overpayments or non-covered services and demanding reimbursements or immediate action. The FBI emphasizes that these communications are designed to create urgency and fear, making victims more likely to comply with requests for sensitive data or payments.
To protect themselves, the FBI advises Americans to be suspicious of any unsolicited emails, texts, or calls requesting personal information, and to never click on links in suspicious communications. The agency also recommends using strong passwords, enabling multi-factor authentication for all accounts, and verifying the legitimacy of any message by contacting the health insurance provider directly using previously confirmed contact information. If anyone believes they have been targeted, they are encouraged to report incidents to the FBI’s Internet Crime Complaint Center.
Read the full public service announcement below.
