CMS has identified a fraud scheme targeting Medicare providers and suppliers. Scammers are impersonating CMS and sending phishing requests for medical records or payment of alleged Medicare debts, often via fax or email, falsely claiming to be part of a Medicare audit or debt collection efforts.
Important: CMS generally doesn’t initiate audits via fax or email unless a provider requests it, and Medicare overpayment collections are handled through an established process through the Medicare Administrative Contractors (MACs). If you receive a suspicious request, don’t respond. If you think you got a fraudulent or questionable request, work with your Medical Review Contractor to confirm if a medical records request is real or your MAC for overpayment collections.
