News & Media
Alert: Phishing Email Disguised as Official OCR Audit Communication
The email prompts recipients to click a link regarding possible inclusion in the HIPAA Privacy, Security, and Breach Rules Audit Program. The link directs individuals to a non-governmental website marketing a firm's cybersecurity services.
In no way is this firm associated with the U.S. Department of Health and Human Services or the Office for Civil Rights. The DHHS takes the unauthorized use of this material by this firm very seriously. In the event that you or your organization has a question as to whether it has received an official communication from the DHHS regarding a HIPAA audit, please contact the U.S. Department of Health and Human Services via email at OSOCRAudit@hhs.gov.