Insurance and Healthcare Fraud: How to Protect Yourself from Medical Scams and Fake Claims (2026 Guide)

Every year, insurance and healthcare fraud costs Americans more than $300 billion — making it one of the most expensive categories of fraud in the country. From fake Medicare calls to phantom medical billing, scammers exploit the complexity of the healthcare system to steal your money, identity, and benefits.

In 2025 alone, the FBI's Healthcare Fraud Unit recovered over $1.9 billion in stolen funds, but experts estimate that less than 10% of healthcare fraud is ever detected. Whether you're a Medicare beneficiary, a private insurance holder, or simply someone who visits the doctor, you're a potential target.

This comprehensive guide covers the 10 most common insurance and healthcare scams, how to identify them, and exactly what to do if you become a victim.

The Scale of Insurance and Healthcare Fraud

Before diving into specific scams, here's why this matters:

Healthcare fraud doesn't just cost money — it can result in incorrect medical records, denied legitimate claims, and even dangerous medical treatments you never received being added to your file.

10 Common Insurance and Healthcare Scams

1. Medicare Impersonation Calls

How it works: Scammers call claiming to be from Medicare, the Centers for Medicare & Medicaid Services (CMS), or the Social Security Administration. They say your Medicare card needs updating, your benefits are expiring, or you qualify for a new plan. The real goal is to steal your Medicare number, Social Security number, or banking information.

Red flags:

• Unsolicited calls claiming to be from Medicare
• Urgency: "Your benefits will be cancelled if you don't act now"
• Requests for your Medicare Beneficiary Identifier (MBI) number
• Offers for "free" medical equipment or genetic testing
• Caller asks you to verify your identity by giving your SSN

Reality: Medicare will never call you unsolicited to ask for personal information. They communicate primarily by mail. If Medicare needs to reach you, they'll send a letter first.

What to do: Hang up immediately. Call 1-800-MEDICARE (1-800-633-4227) directly to verify any claims.

2. Phantom Billing (Services Never Rendered)

How it works: A healthcare provider or criminal organization bills your insurance for services, procedures, or equipment you never received. This can happen when a provider inflates bills with extra services, someone steals your insurance information and uses it, a fraudulent clinic bills for patients who never visited, or a provider bills for a more expensive procedure than what was performed ("upcoding").

Red flags:

• Explanation of Benefits (EOB) statements listing services you didn't receive
• Bills for dates when you weren't at the provider's office
• Charges for procedures more complex than what actually happened
• Bills from providers or facilities you've never visited

Reality: Phantom billing accounts for an estimated $100 billion annually in the US. Many victims never notice because they don't review their EOB statements.

What to do: Review EVERY Explanation of Benefits statement. Compare dates and services against your own records. Report discrepancies to your insurance company immediately.

3. Fake Health Insurance Plans

How it works: Scammers sell fake health insurance plans, especially during Open Enrollment periods. These "plans" look legitimate — they have official-looking cards, customer service numbers, and even websites — but they provide no actual coverage. Victims discover the fraud only when they try to use the insurance and claims are denied.

Red flags:

• Dramatically lower premiums than legitimate plans
• Pressure to enroll immediately ("This rate expires tonight")
• No option to review plan documents before enrolling
• The plan isn't listed on Healthcare.gov or your state marketplace
• Representatives can't provide a Summary of Benefits and Coverage (SBC)
• Payment only accepted via wire transfer, gift cards, or cryptocurrency

Reality: During the 2025 Open Enrollment period, the FTC received over 15,000 complaints about fake health insurance. Average loss: $3,200.

What to do: Only purchase health insurance through Healthcare.gov, your state marketplace, your employer, or a licensed insurance broker. Verify broker licenses at your state's Department of Insurance website.

4. Medical Identity Theft

How it works: Someone steals your personal and insurance information to receive medical care, buy prescription drugs, or file fraudulent insurance claims in your name. This is particularly dangerous because it can corrupt your medical records with someone else's health data — potentially leading to wrong treatments, allergic reactions, or misdiagnoses.

Red flags:

• Medical bills for services you didn't receive
• Collection notices for medical debts you don't recognize
• Your health plan reaching its benefit limit unexpectedly
• Errors in your medical records (wrong blood type, conditions you don't have)
• Being denied insurance because of conditions in your records you don't have
• Explanation of Benefits for unknown services

Reality: Medical identity theft affects approximately 2.5 million Americans annually. Unlike financial identity theft, it can take years to discover and even longer to correct because medical records are fragmented across multiple providers.

What to do: Request your medical records annually from all providers. Review every EOB statement. Place a fraud alert on your credit reports. Report suspected medical identity theft to the FTC and your state's Attorney General.

5. Prescription Drug Scams

How it works: Scammers exploit the high cost of prescription medications by selling counterfeit, expired, or non-existent drugs. They operate through fake online pharmacies with no real pharmacist, social media ads for heavily discounted medications, spam emails offering prescription drugs without a prescription, "Canadian pharmacy" websites that aren't actually in Canada, and text messages about special medication deals.

Red flags:

• Prices dramatically below normal retail (50%+ off)
• No prescription required for prescription drugs
• No licensed pharmacist available for consultation
• Website has no physical address or phone number
• Medications arrive in unmarked packaging
• Pills look different than usual (wrong color, size, markings)

Reality: The WHO estimates that 10% of medicines worldwide are counterfeit, rising to 25-50% in some developing countries. In 2025, the FDA seized over $500 million in counterfeit drugs entering the US.

What to do: Only buy prescriptions from pharmacies verified by the National Association of Boards of Pharmacy (NABP). Look for the VIPPS (Verified Internet Pharmacy Practice Sites) seal. Use your insurance company's preferred pharmacy network.

6. Durable Medical Equipment (DME) Fraud

How it works: Scammers provide unnecessary or substandard medical equipment — wheelchairs, braces, CPAP machines, back supports — and bill insurance at inflated prices. Often, they contact you offering "free" equipment paid for by Medicare or your insurance.

Red flags:

• Unsolicited calls or ads offering free medical equipment
• Being asked to provide your Medicare/insurance number for "free" items
• Equipment arriving that you didn't order or need
• Pressure to accept equipment you haven't discussed with your doctor
• Equipment that is clearly used, refurbished, or poor quality

Reality: DME fraud costs Medicare an estimated $9 billion annually. The 2025 DOJ sweep (Operation Brace Yourself) resulted in 76 arrests and $1.2 billion in false claims.

What to do: Never accept unsolicited medical equipment. Only get DME prescribed by your doctor. Verify the supplier is Medicare-approved at medicare.gov/medical-equipment-suppliers. Review all Medicare statements for equipment charges.

7. Telehealth Fraud

How it works: Since the telehealth explosion during COVID-19, fraudulent telehealth companies have multiplied. They offer brief or non-existent consultations, then bill insurance for extensive services. Some operate as "pill mills" prescribing unnecessary medications, while others use telehealth encounters as a gateway to bill for additional services.

Red flags:

• Telehealth "visit" lasts less than 2 minutes
• You're prescribed medications without a proper evaluation
• The provider doesn't ask about your medical history
• You receive bills for follow-up services you never had
• The telehealth platform has no verifiable medical license
• Ads offering free telehealth visits with guaranteed prescriptions

Reality: Telehealth fraud has increased 400% since 2020. In 2025, the DOJ charged 36 telehealth executives with $1.1 billion in fraudulent billing.

What to do: Use telehealth services recommended by your insurance company or primary care physician. Verify the provider's medical license at your state medical board. Review all bills after telehealth visits.

8. Genetic Testing Scams

How it works: Scammers offer free genetic or DNA testing — often at health fairs, senior centers, or door-to-door — and then bill Medicare or your insurance thousands of dollars for unnecessary tests. They use your insurance information to submit fraudulent claims, and the test results (if any) are useless.

Red flags:

• Unsolicited offers for free genetic testing
• Testing offered at non-medical locations (malls, fairs, parking lots)
• Someone asks for your Medicare/insurance card for a "free" test
• No doctor ordered or recommended the test
• Results come with recommendations to buy specific supplements or treatments

Reality: Genetic testing fraud cost Medicare over $2.1 billion between 2023-2025. The tests themselves often cost nothing to perform but are billed at $7,000-$15,000 per test.

What to do: Only get genetic testing ordered by your doctor for a specific medical reason. Never give your Medicare card to anyone offering free testing. Report suspicious testing offers to 1-800-MEDICARE.

9. Health Savings Account (HSA) and Flexible Spending Account (FSA) Fraud

How it works: Criminals target your HSA or FSA accounts through phishing emails impersonating your HSA/FSA administrator, fake websites that mimic your account login page, social engineering calls asking you to "verify" your account, data breaches exposing HSA/FSA card numbers, and skimming devices on payment terminals.

Red flags:

• Emails asking you to verify HSA/FSA account information
• Unauthorized transactions on your HSA/FSA statement
• Login prompts on unfamiliar websites
• Calls asking for your HSA card number or PIN
• Transactions at merchants you don't recognize

Reality: HSA fraud increased 65% in 2025 as more Americans use tax-advantaged health accounts (38 million HSA accounts totaling $116 billion). Average unauthorized transaction: $1,800.

What to do: Monitor your HSA/FSA statements monthly. Set up transaction alerts. Never share your HSA card number via email or phone. Use strong, unique passwords for HSA portals. Report unauthorized transactions immediately.

10. Workers' Compensation Fraud

How it works: While often thought of as employee-side fraud, workers' comp fraud increasingly targets legitimate injured workers. Scammers include fake workers' comp attorneys soliciting accident victims, fraudulent medical providers billing inflated treatment costs, insurance company representatives pressuring you to settle for less, "medical review" companies that deny legitimate claims, and scammers impersonating your employer's insurance carrier.

Red flags:

• Unsolicited calls from "attorneys" after a workplace injury
• Pressure to see a specific doctor (who may be part of the fraud network)
• Your employer discouraging you from filing a legitimate claim
• Being told your injury "doesn't qualify" without proper review
• Requests for upfront payments to process your claim

Reality: Workers' compensation fraud costs employers and workers over $30 billion annually. While media focuses on employee fraud, employer and provider fraud accounts for 70% of the total.

What to do: Report workplace injuries immediately through official channels. Use your state's workers' compensation board for guidance. Choose your own doctor when allowed by state law. Document everything.

12 Universal Red Flags for Insurance and Healthcare Fraud

Watch for these warning signs across all types of insurance and healthcare scams:

1. Unsolicited contact — You didn't initiate the call, email, or visit
2. Free offers — "Free" testing, equipment, or services in exchange for your insurance information
3. Urgency pressure — "Act now or lose your benefits"
4. Request for insurance/Medicare numbers — Via phone, email, or text
5. Too-good-to-be-true prices — Dramatically cheaper than market rates
6. No doctor referral — Services offered without physician involvement
7. Cash-only requests — Legitimate providers accept insurance
8. Unfamiliar charges — Services on your EOB you don't recognize
9. Missing documentation — No written plan details or receipts
10. Pressure to switch providers — Urgent demands to change doctors or pharmacies
11. Unsolicited equipment — Medical devices you didn't order arriving
12. Waived copays/deductibles — Offers to skip your out-of-pocket costs (this is usually illegal)

How to Protect Yourself: 7 Essential Steps

Step 1: Guard Your Insurance Information

Treat your health insurance card like a credit card:

• Never give your Medicare or insurance number to unsolicited callers
• Don't share your insurance information at health fairs or public events
• Shred all documents containing insurance information before disposal
• Store your insurance cards in a secure location
• Never post photos of your insurance card on social media

Step 2: Review Every Explanation of Benefits (EOB)

Your EOB is your first line of defense:

• Read every EOB statement within 30 days of receiving it
• Compare dates of service against your calendar — were you there?
• Verify the services listed match what actually happened
• Check that the provider listed is one you actually visited
• Question any charges that seem too high or unfamiliar
• Keep a personal health journal noting every visit, test, and procedure

Step 3: Monitor Your Medical Records

Request and review your records annually:

• Request records from every provider you've seen in the past year
• Look for services, diagnoses, or medications you don't recognize
• Verify your personal information is correct (name, DOB, SSN)
• Check for unfamiliar providers or facilities in your records
• Report discrepancies to the provider and your insurance company

Step 4: Verify Before You Trust

Always verify independently:

• Call your insurance company directly using the number on your card
• Call Medicare at 1-800-MEDICARE for any Medicare-related questions
• Verify provider licenses at your state's medical board website
• Check pharmacy legitimacy at nabp.pharmacy
• Look up insurance brokers at your state's Department of Insurance

Step 5: Use Official Channels

For insurance shopping and management:

• Purchase health insurance only through Healthcare.gov or your state marketplace
• Use your insurance company's provider directory to find in-network doctors
• Fill prescriptions through your plan's preferred pharmacy network
• Access telehealth through your insurance company's approved platforms

Step 6: Set Up Alerts and Monitoring

Proactive monitoring catches fraud early:

• Set up alerts on your insurance portal for all claims
• Enable transaction notifications on your HSA/FSA accounts
• Sign up for Medicare's fraud alert service
• Monitor your credit reports (medical debt appears on credit reports)
• Use identity monitoring services that include medical identity theft

Step 7: Report Suspected Fraud Immediately

Every report helps stop fraud:

• Medicare fraud: 1-800-HHS-TIPS or oig.hhs.gov
• Insurance fraud: Your state's fraud bureau or insurance commissioner
• Identity theft: IdentityTheft.gov (FTC)
• All fraud types: FBI's IC3 at ic3.gov
• Your insurance company's fraud hotline (usually on your card)

What to Do If You're a Victim

Immediate Steps (First 24 Hours)

1. Document everything — Save all communications, bills, and EOB statements
2. Contact your insurance company — Report the fraud to their Special Investigations Unit (SIU)
3. File a police report — Get a case number for your records
4. Place a fraud alert — Contact one credit bureau (they notify the others)
5. Report to the FTC — File at IdentityTheft.gov

Short-Term Actions (First Week)

6. Request your medical records — From all providers involved
7. Request an accounting of disclosures — Under HIPAA, you have the right to know who accessed your records
8. Contact Medicare (if applicable) — Call 1-800-MEDICARE to report
9. Contact your state's insurance fraud bureau — Find yours at coalitionagainstinsurancefraud.org
10. Freeze your credit — At all three bureaus if identity was compromised

Long-Term Recovery

11. Correct your medical records — Work with each provider to remove fraudulent entries
12. Monitor your EOB statements — Watch for recurring fraudulent charges
13. Follow up on reports — Check status of your fraud complaints
14. Consider legal help — An attorney specializing in healthcare fraud can help with complex cases
15. Check your credit annually — Medical debt from fraud may appear on your credit report

Special Populations: Who's Most at Risk?

Medicare Beneficiaries (65+)

• Risk level: HIGHEST — Medicare information is the #1 target
• Common scams: Medicare card replacement, free testing, DME fraud
• Protection: Never share your MBI, hang up on unsolicited calls, review Medicare Summary Notices

Small Business Owners

• Risk level: HIGH — Group insurance plans are targeted by fraudulent brokers
• Common scams: Fake group plans, inflated workers' comp premiums, fraudulent wellness programs
• Protection: Verify brokers through state licensing, compare plans on official marketplaces

Chronically Ill Patients

• Risk level: HIGH — Frequent interactions with healthcare system create more exposure
• Common scams: Prescription drug scams, fake clinical trials, phantom billing
• Protection: Use established pharmacies, verify clinical trials at clinicaltrials.gov

New Insurance Enrollees

• Risk level: MODERATE-HIGH — Unfamiliar with how insurance works, more susceptible to fake plans
• Common scams: Fake health plans, enrollment fee scams, fake navigators
• Protection: Only enroll through Healthcare.gov or state marketplace

Frequently Asked Questions

How do I check if my insurance plan is legitimate?

Contact your state's Department of Insurance to verify the company and plan are licensed. Check Healthcare.gov for marketplace plans. Ask for the plan's NAIC number and verify it independently.

What should I do if I receive a medical bill for services I never got?

Don't pay it. Contact the billing provider to dispute the charge. Contact your insurance company to report it. File a complaint with your state insurance commissioner. Document everything.

Can someone use my Medicare number to get medical care?

Yes, and this is one of the most common forms of medical identity theft. If someone uses your Medicare number, their medical information can become mixed with yours, potentially affecting your care.

How do I know if an online pharmacy is legitimate?

Check the NABP website (nabp.pharmacy) for verified pharmacies. Look for the VIPPS seal. Verify the pharmacy requires a valid prescription. Check that they have a licensed pharmacist available for consultation.

What's the difference between healthcare fraud and billing errors?

Billing errors are mistakes — wrong codes, duplicate charges, or clerical errors. Fraud is intentional deception for financial gain. Both should be reported, but fraud involves criminal intent. If you see a pattern of "errors" from the same provider, it may be fraud.

Is it fraud if my doctor prescribes something I don't need?

If a doctor knowingly prescribes unnecessary treatments to bill your insurance, that is fraud. This is called "overutilization" and is one of the most common forms of provider fraud. Trust your instincts — if a treatment seems unnecessary, get a second opinion.

How long does it take to resolve medical identity theft?

On average, it takes 12-18 months to fully resolve medical identity theft, compared to 6-9 months for financial identity theft. This is because medical records are spread across multiple providers and systems.

Will reporting fraud affect my insurance coverage?

No. Reporting suspected fraud will not affect your coverage, premiums, or benefits. Insurance companies and Medicare actively encourage fraud reporting. You're protected by federal and state whistleblower laws.

Use Our Free AI Scam Detector

Received a suspicious message about your insurance or Medicare benefits? Don't take chances — check it instantly with our free AI scam detector.

Our AI analyzes messages for common fraud indicators including:

• Insurance impersonation language
• Urgency and pressure tactics
• Requests for sensitive information
• Fake offer patterns
• Known scam templates

It's free, instant, and requires no signup. Protect yourself and your loved ones from healthcare fraud today.

Last updated: March 22, 2026 Sources: FBI Healthcare Fraud Unit, CMS, FTC, DOJ, NABP, Coalition Against Insurance Fraud