What is 'Medical Identity Theft'

Medical identity theft involves the fraudulent use of a person’s health insurance information to receive reimbursement for health care services provided to an individual not covered by the policy. Both patients and providers may commit fraudulent medical claims, depending on circumstances. Other times, the information is stolen by employees or external hackers to profit from selling personal identifying information (PII).

BREAKING DOWN 'Medical Identity Theft'

Medical identity theft uses insurance coverage information for one individual to obtain or pay for care for another individual. A ten-year study by Trend Micro found hackers who target healthcare information are 72% more likely to gain an individual's personal identifying information (PII) then they are in obtaining financial information. The same study found that security breaches of the Health Care sector account for one-quarter of all reported attempts.

Perpetrators of medical identity theft include hackers who use social engineering to obtain social security numbers and health insurance information from unsuspecting medical providers and patients. However, hackers are not alone in the threat to the loss of data. A healthcare provider is almost equally likely to lose private information through either the theft of laptops, flash drives, and backup copies or by the leaking of private data from an employee.

The loss of patient data from unauthorized access to an insurance company’s or healthcare provider’s database is like other types of identity theft, Motivations for employees who steal patients’ data include greed, revenge, and other agendas. 

Use of Stolen Medical Identities

Stolen health insurance information gets misused in two primary ways. 

  1. Consumers steal insurance information to cover benefits their insurance may not include, or because they have no insurance at all. For example, a drug dealer might use fraudulent insurance information to purchase prescription drugs. 

  2. Providers also may file fraudulent claims on an individual’s insurance to obtain reimbursement for procedures they never performed. They may do this to offset the cost of treating uninsured or under-insured clients.

Victims of medical identity theft can suffer similar outcomes to victims of other types of identity theft. Damages include lowered credit ratings and denial of services. If thieves trigger thresholds for maximum benefits on a policy, policyholders may find themselves unable to get timely coverage for urgent treatments. The victim might see the yearly cost of their insurance increase, or denied coverage altogether if the fraudulent treatment included care for things like diabetes, osteoarthritis, or cancer.

When medical identity fraud causes erroneous medical records, the consequences could become even more significant. For example, if an identity thief obtains medical care that enters the wrong blood type into a patient’s medical records and the victim of stolen identity needs a blood transfusion, the results could endanger their life.

Avoiding Medical Identity Theft

The best protection against either external or internal theft is constant monitoring through the use of honeypots and other security practices. Portable storage devices should be carefully regulated, and a regular inventory of their use and location kept. Regulation of employee with access to patient data also needs monitoring with the granting of access based on the work responsibilities of the employee.

The Health Insurance Portability and Accountability Act (HIPAA) passed by Congress in 1996 requires health care facilities in the U.S. to follow strict guidelines to ensure they treat patient data including insurance information carefully. 

Providers who commit medical identity theft usually do so to obtain reimbursement from an insurance company or the government for services they did not provide. To detect and prevent this type of fraud, consumers should carefully review any explanations of the benefit payments they receive from their insurers. Contact your insurance provider immediately if you get a statement for a procedure you did not receive.

Medical identity thieves typically require a patient’s Social Security number as well as their medical insurance information. Therefore, consumers should guard this information carefully. Only provide your social security number or health insurance information when necessary and then, only release the information when its security is guaranteed.

Consumers should watch their credit reports for unpaid medical bills that enter collections. The Fair Credit Reporting Act requires each of the three credit reporting bureaus to supply consumers with a free credit report once per year. Federal law also entitles consumers to receive free credit reports if any company has taken adverse action against them. This includes denial of credit, insurance or employment as well as reports from collection agencies or judgments. Consumers must request reports within 60 days from the date of the adverse action. Also, consumers on welfare, unemployed individuals planning to look for a job within 60 days and victims of identity theft are also entitled to a free credit report from each of the reporting agencies.

  1. Identity Theft

    Identity theft is the crime of obtaining the personal or financial ...
  2. Identity Fraud Reimbursement Program

    An Identity Fraud Reimbursement Program is a financial product ...
  3. Synthetic Identity Theft

    Synthetic identity theft is a type of fraud in which a criminal ...
  4. Credit Monitoring Service

    A credit monitoring service is a system that monitors a consumer’s ...
  5. Medical Payments Coverage

    Medical payments coverages is part of an automobile insurance ...
  6. Credit Fraud Alert

    Credit fraud alerts give notice to the credit reporting bureaus ...
Related Articles
  1. Tech

    Millennials at Higher Risk of Identity Theft

    Tech savvy Millenials are particularly prone to becoming a victim of identify theft.
  2. Insights

    5 Overlooked Places Where Your Identity Can Be Stolen

    Identity theft affects many Americans, and are often caught off guard. These are 5 places thieves target.
  3. Personal Finance

    What To Do If Your Identity Is Stolen

    Having your identity stolen is a nightmare. If you are ever faced with the situation, use these steps to alleviate the problem.
  4. Insights

    Are You A Target For Identity Thieves?

    The Americans at highest risk for identity theft and identity fraud aren't the ones you most expect. See if you're on the high-risk list.
  5. Managing Wealth

    Morgan Stanley's New Identity Theft Protection (MS)

    Morgan Stanley now offers identity theft protection to high net worth clients, pursuant to a poll in which they cited this as a top fear.
  6. Tech

    Avoid Becoming An Identity Thief's Next Victim

    Use these 7 techniques to keep yourself under the radar and out of the way of identity thieves.
  7. Insights

    Identity Theft: How Much Should You Worry?

    Identity fraud cost $18 billion last year. But are enough Americans victimized – with big enough losses – that it's worth buying protection?
  8. Personal Finance

    Identity Theft: How to Avoid it

    Don't be a victim of this disturbing crime. Get insight into how perpetrators commit this form of fraud.
  9. Tech

    Protect Your Kids Against Identity Theft

    Children have valid Social Security numbers and no debt, which makes them ideal targets. Here’s what parents can do to prevent a scam.
  10. Managing Wealth

    Equifax Data Breach: How to Recover From Identity Theft

    Identity theft isn't going away, and fixing it can take time and money. But doing nothing isn't an option. Rather than become a victim, it is time to take action.
  1. Why is my insurance premium so high/low?

    Insurance premiums can be affected by many factors including: type and amount of risk size of deductible amount of coverage ... Read Answer >>
  2. Can an Insurance Company Deny Coverage?

    Insurance isn't always as straightforward as other products, and insurers can deny coverage in many different instances. ... Read Answer >>
Trading Center