An advisory issued on June 24, 2024 by the Health and Human Services Department and the FBI said criminals are using social engineering campaigns to target healthcare, public health entities and providers. Phishing schemes are being used to steal login credentials that give bad actors access to payment information. In 2023, the number of individuals affected by healthcare data breaches reached new heights, with an equivalent of 40% of the US population having their information stolen or otherwise exposed. The advisory reiterated guidance from the Homeland Security Department’s Cybersecurity and Infrastructure Security Agency and National Institute of Standards and Technology that included implementing multi-factor authentication and training IT employees to identify potential vulnerabilities. [Modern Healthcare, June, 2024]