Ransomware hackers target medical billing companies, and it CAN AFFECT your entire company! (Ransomware is a type of malicious software designed to block access to a computer system until a sum of money is paid.)
Often out of one’s control, ransomware hackers target medical billing companies because of the tremendous value of the data. BUT, there are steps that CAN BE TAKEN to protect you, your company, and your patients and/or clients.
NetWalker Ransomware, for example, gained notoriety for targeting hospitals and healthcare providers with e-mails claiming to provide information about COVID-19. (The e-mail usually has an attachment that downloads the ransomware from a remote server when clicked on.) The thing is, this is very lucrative for identity thieves since medical records information sells anywhere from $1-$1000!
As the number of healthcare providers taking advantage of Telehealth continues to increase—now outnumbering in-person visits—the number of ransomware attacks continues to increase as well. This means Billers and Providers must be aware of the programs that are used on their machines and ensure necessary steps are taken to safeguard against hackers and attacks.
How can you protect yourself and/or your organization?
Carefully monitoring where you store and enter your passwords can be extremely beneficial to help minimize the risk of a hack and keeping personal or patient information protected.
Routine password changes and monitoring where you store and enter your passwords can be extremely beneficial to help reduce the risk of becoming a victim to a hacker. Passwords should be long, unique in characters, capitalization, and alphanumerical.
Have you had an accurate and thorough Security Risk Assessment and/or penetration testing? If you haven’t completed an accurate and thorough security risk assessment, you could also be penalized under ‘willful neglect’ (this category alone is $50,000 per violation!) in addition to the higher risk of ransomware attacks.
If you believe you might have revealed sensitive information about your organization, report it to the appropriate people within the organization, including network administrators. They can be alert for any suspicious or unusual activity.
The strength of your passwords directly impacts your online security.
Live Compliance can help. They aggregate breaches which enables you to assess where personal data has been exposed. Dark Web scanning is built right into their Portal, and it allows you to keep an eye on employees whose information was involved in a breach, where the breach took place, and then suggest the next steps to take.
At Live Compliance, they make checking off your compliance requirements extremely simple and to ensure this doesn’t happen to you or your organization:
Reliable and effective compliance
Completely online, our role-based courses make training easy for remote or in-office employees
Contact-free, accurate Security Risk Assessments are conducted remotely. All devices are thoroughly analyzed regardless of location. (Conducting an accurate and thorough Security Risk Assessment is not only required but is a useful tool to expose potential vulnerabilities, including those such as password protection.)
Policies and procedures curated to fit your organization ensuring employees are updated on all workstation use and security safeguards in the office, or out of the office—all updated in real-time
Electronic, prepared document sending and signing to employees and business associates
So, don’t risk your company’s future on ransomware hackers. Contact one of EZClaim’s partners, Live Compliance, especially since they are offering a FREE Organization Assessment to help determine your company’s status. E-mailthem, visit their website at LiveCompliance.com, or call them at 980.999.1585.
For more information about EZClaim’s medical billing software, which provides a best-in-class product with correspondingly exceptional service and support, e-mail, visit their website, or contact them at 877.650.0904.
[ Article contributed by Jim Johnson of Live Compliance ]
A recent medical billing webinar on Telehealth that EZclaim hosted is now available to review.
On April 30th, EZClaim hosted a Telehealth Updates Webinar for our clients with guest speaker Sandy Giangreco Brown – Director of Coding and Revenue Integrity Health Care at CliftonLarsonAllen, LLP
We had one of the largest viewing audiences 101 active attendees in the session. Sandy shared informative billing codes and direct links to update hands-on information for billers actively coding Telehealth sessions. For those of you who missed it, we have provided on our website the recorded sessionezclaim.com/webinars and can provide the presentation slides too! Just send a request to firstname.lastname@example.org
We continue to get views of this presentation and look forward to hosting more hot topics with the CLA Team.
With the onset of COVID-19 came a great opportunity for clinics and hospitals to offer Telehealth and Communication Technology Based (CTSB) services. The Centers of Medicare and Medicaid Services, or CMS, have provided many updates to the available services that can be provided and billed to the patients to help practices not only stay afloat financially but also and most importantly, to keep their staff safe and provide excellent care to their patients!
There were new guidelines released even after this webinar on 4/30/2020 (which can be found here – https://www.cms.gov/files/document/se20016.pdf, and now includes audio-only Telehealth for services such as psychotherapy, tobacco cessation and medical nutrition counseling as well as diabetes self-management training. CMS is also increasing the payments for the Audio Only services from $14-$41 nationally to $46-$110.
As of April 30, 2020, in order to bill Telehealth, RHCs are now required to bill the G2025–CG–95 from January 27, 2020, to June 30, 2020. Then from July 1, 2020, to the end of the PHE, they will be billing the G2025 with an optional 95 modifier, per CMS SE20016 Medicare Learning Network Transmittal.
FQHCs will need to report three (3) codes for their Telehealth Services:
G0467 (or other appropriate FQHC specific payment code)
99214–95 (or other FQHC PPS Qualifying Payment Code)
CLA is on the frontlines and closely monitoring and analyzing activities related to Telehealth and other virtual health regulations
As your practice adjusts to Telehealth going forward, EZclaim’s medical billing solution can help you simplify patient billing and help you get paid for Telehealth visits. (Our recent medical billing webinar on Telehealth may just help you better understand the current situation).
Since CMS HHS just updated their Telehealth regulations to adjust to the COVID-19 environment—including having a remote workforce—we wanted to provide a clear update to independent physicians and billers to advise them of the fast-moving changes of many regulations, and what to expect in the near future.
It is important to note that CMS has recently announced that new and established patients have availability to Telehealth, and HHS OIG is providing flexibility for healthcare providers to reduce or waive cost-sharing for Telehealth visits paid by federal healthcare programs. CMS is also expanding Telehealth services to people with medicare.
In addition, we’ve included a few key questions and answers below. If you have further questions about Telehealth and your compliance, contact Jim Johnson with Live Compliance at Jim@LiveCompliance.com or (980) 999-1585.
1. Who can provide Telehealth services?
Certified nurse anesthetists
2. What services can a medicare beneficiary receive through Telehealth?
Evaluation and management visits (common office visits)
Mental health counseling
Preventive health screenings
More than 80 additional services
3. What are the types of virtual services?
Medicare Telehealth visits
Live Compliance is an EZclaim premier partner for HIPAA compliance and is integrated into EZclaim’s billing solution.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.