Healthcare Billing Fraud via Email
How fraudulent healthcare billing emails collect personal and insurance information that enables fraudsters to submit claims for services never provided.
Part of: Healthcare Billing Fraud
Last reviewed: 8 June 2026
Healthcare billing fraud is primarily a scheme perpetrated against insurers and government health programs, but consumers are both the mechanism through which it is enabled and the secondary victims when their insurance benefits are exhausted or their personal information is compromised. Email is a key channel for the data collection phase: phishing emails mimicking healthcare providers, insurers, or billing companies harvest insurance details that are then used to submit fraudulent claims.
The financial scale of healthcare billing fraud is substantial, and its effects on individual consumers include exhausted insurance benefits, inaccurate medical records, debt collection for bills they do not owe, and damage to their credit from fraudulent non-payment entries.
Understanding how these emails work — and what reviewing your own explanation of benefits regularly can do to detect it early — is the most practical consumer protection available.
How this scam works on email
An email arrives appearing to come from a healthcare provider's billing department, a health insurer, or a patient billing company. It states that there is an outstanding balance that requires immediate payment, that insurance information must be updated to prevent coverage suspension, or that a new billing system requires account verification.
A link collects insurance member ID, policy number, and group number, along with personal details for 'identity verification'. This information is then used to submit fraudulent claims to the insurer for procedures never performed, using the victim's insurance identity and often real provider names to create plausible claim records.
In a second pattern, the email directly solicits credit card payment for a manufactured outstanding balance. The victim pays a bill for services that either never occurred or were already covered by insurance, with the payment going directly to the fraudster.
Common red flags
- Email requests insurance member ID and policy details via an online form
- Bill amount does not match any recent care you received
- Threat of immediate collection action unless a payment is made within 24 hours
- Link in the email does not go to the provider's known official billing portal
- Explanation of benefits shows claims for services you did not receive
- Provider name on the bill does not match any provider you have visited
How to protect yourself
- Review every explanation of benefits from your insurer for services you do not recognise
- Access billing portals only through links from your insurer's official website, not through email links
- Keep records of every healthcare appointment to compare against billing
- If a bill arrives for services you did not receive, contact both the named provider and your insurer immediately
- Request an itemised bill for any medical invoice before paying it
How to report it
- Report healthcare billing fraud to the HHS Office of Inspector General at 1-800-HHS-TIPS
- Contact your insurer's fraud department with specific claim details
- File a complaint with the FTC at reportfraud.ftc.gov
- If Medicare or Medicaid is involved, report to the Medicare fraud hotline at 1-800-MEDICARE
Frequently asked questions
What should I do if my explanation of benefits shows a service I did not receive?
Contact your insurer's member services immediately and file a fraud report. Also contact the provider named on the claim to notify them that a claim was filed in your name without your consent. Keep notes of every conversation.
Can healthcare billing fraud affect my credit?
Yes. Unpaid fraudulent medical bills can be sent to collections and appear on your credit report. If you discover a collection for medical debt you do not recognise, dispute it with the credit bureaus and report the underlying billing fraud.