The federal Department of Health and Human Services is asking providers to be on the lookout for postcards from the "Secretary of Compliance" in the "HIPAA Compliance Division" at federal DHHS. The postcard asks the recipient to call, email, or visit a website that's supposedly about HIPAA compliance.
These postcards are fake and are part of an apparent phishing campaign. You should simply just ignore them and toss them. These postcards are not from any federal agency.
I'm sending this out to everyone because we work with many partners that might think the postcard is legitimate. Please feel free to share this broadly.
This is what the fake postcard looks like the image below.
Again, if anyone receives this postcard, the only thing to do is to just throw it away. There's a lot of anxiety in the world right now. Nobody needs more of it.
Let me know if you have any questions. I've included the security alert email from federal DHHS below.
Danny K. Muchoki
Montgomery County Dept. of Health & Human Services
☎: (240) 777-1295