Healthcare payment processor credentials compromised by cybercriminals

Attacks on healthcare payment processors have increased, according to the FBI.

Threat actors impersonate victims by using publicly available personally identifiable information (PII) and social engineering.

Attackers redirected $3.1 million from a victim’s payments to accounts they controlled in February 2022.

The same method was used to steal $700,000 in another attack.

Cybercriminals are stealing healthcare payment processor credentials and redirecting payments to bank accounts they control.

In February 2022, attackers redirected $3.1 million from a victim’s payments after changing direct deposit banking information to an account they controlled using compromised credentials.

The FBI recommends that organisations use well-maintained security software and conduct regular network security assessments.