I’m not sure if this story is embarrassing or eye-opening, but it was certainly educational for me.
An orthopedic group recently contacted us after they received an email from someone purporting to be a U.S. Department of Health and Human Services (HHS) Office of Inspector General (OIG) agent. The client’s initial question was an astute one: how do we know this person is really a government agent?
As we’ve discussed before, this is a question everyone should ask when receiving communication from someone who claims to be one. I’ve worked on government investigations for 30 years now, so that felt like a softball.
But I was mistaken.
When dealing with the FBI, authenticating an agent is pretty easy. The agent’s business card will mention in which field office he or she is located. Simply Google the phone number for that local field office, call them, and verify the agent’s identity. Easy peasy.
I thought I had an even easier solution for the OIG. OIG agents are employees of HHS. HHS has a nice website that allows you to look up its employees. I did a quick search on this individual and didn’t find him, heightening my suspicions. But then I elected to search a few OIG agents I knew well. Those searches came up empty as well. Apparently, OIG agents aren’t included in the HHS employee database.
OIG agents are based in field offices. Next, I tried a trick I’d used with the FBI, Googling some of the field offices I know. Once again, no dice.
Now I was feeling somewhat frustrated, and very humbled. So, I started calling some of the agents I know. After getting a few voicemails, I spoke to an agent from Kansas City.
What I learned surprised me.
There really isn’t a very good way to easily verify the identity of an OIG agent. One of her suggestions was asking the agent to send you an image of their business card. That’s something, but if you don’t know that a person with that name actually works for the agency, it doesn’t seem terribly persuasive. By the end of the call, her main advice was “if you have any doubts, contact an agent that you know and allow them to verify the person’s identity.”
Here’s one thing you SHOULDN’T do. Don’t ask the person for a number to call. They can give you a number they control. Whatever number you call to verify them has to be a general number you can find from a reputable directory, not information given to you by a possibly phony agent.
I will add that emails actually make me less nervous than phone calls.
It’s more difficult for a wrongdoer to highjack the hhs.oig.gov domain than it is to spoof a phone number. It’s pretty easy to have a phone call come in looking like it’s coming from the FBI. It’s also possible to have an email appear to come in from the wrong address. But if you send an email to an address, I think it’s pretty difficult for someone to hijack that communication.
So, send an email to an agent at a domain that you are certain is probably relatively safe, as long as you are 100-percent certain that the domain address is truly one belonging to the U.S. government. Anyone who ever accidentally wound up at the defunct porn site whitehouse.com has likely learned the lesson that details matter.
The address extensions “.com” and “.gov” are very different.
The bottom line is that if you’re contacted by a government agent, you definitely want to be thinking about Roger Daltry and The Who. Ask “who are you,” and then take steps to check them out – because you want to make sure “you don’t get fooled again.”
Well, it’s what we’ve all been waiting for… In a late-night move last Wednesday, Nov. 12, President Trump signed the Continuing Appropriations Act (CAA) of
Here are my thoughts on what to expect when the federal shutdown finally ends. First, the lights don’t all flick back on at once. Agencies
Please log in to your account to comment on this article.
Accurately determining the principal diagnosis is critical for compliant billing, appropriate reimbursement, and valid quality reporting — yet it remains one of the most subjective and error-prone areas in inpatient coding. In this expert-led session, Cheryl Ericson, RN, MS, CCDS, CDIP, demystifies the complexities of principal diagnosis assignment, bridging the gap between coding rules and clinical reality. Learn how to strengthen your organization’s coding accuracy, reduce denials, and ensure your documentation supports true medical necessity.
Denials continue to delay reimbursement, increase administrative burden, and threaten financial stability across healthcare organizations. This essential webcast tackles the root causes—rising payer scrutiny, fragmented workflows, inconsistent documentation, and underused analytics—and offers proven, data-driven strategies to prevent and overturn denials. Attendees will gain practical tools to strengthen documentation and coding accuracy, engage clinicians effectively, and leverage predictive analytics and AI to identify risks before they impact revenue. Through real-world case examples and actionable guidance, this session empowers coding, CDI, and revenue cycle professionals to shift from reactive appeals to proactive denial prevention and revenue protection.
Sepsis remains one of the most frequently denied and contested diagnoses, creating costly revenue loss and compliance risks. In this webcast, Angela Comfort, DBA, MBA, RHIA, CDIP, CCS, CCS-P, provides practical, real-world strategies to align documentation with coding guidelines, reconcile Sepsis-2 and Sepsis-3 definitions, and apply compliant queries. You’ll learn how to identify and address documentation gaps, strengthen provider engagement, and defend diagnoses against payer scrutiny—equipping you to protect reimbursement, improve SOI/ROM capture, and reduce audit vulnerability in this high-risk area.
Only ICD10monitor delivers what you need: updates on must-know changes associated with the FY26 IPPS, including new ICD-10-CM/PCS codes, CCs/MCCs, and MS-DRGs, plus insights, analysis and answers to your questions from two of the country’s most respected subject matter experts.
Get clear, practical answers to Medicare’s most confusing regulations. Join Dr. Ronald Hirsch as he breaks down real-world compliance challenges and shares guidance your team can apply right away.
Federal auditors are zeroing in on Inpatient Rehabilitation Facility (IRF) and hospital rehab unit services, with OIG and CERT audits leading to millions in penalties—often due to documentation and administrative errors, not quality of care. Join compliance expert Michael Calahan, PA, MBA, to learn the five clinical “pillars” of IRF-PPS admissions, key documentation requirements, and real-life case lessons to help protect your revenue.
During this essential RACmonitor webcast Michael Calahan, PA, MBA Certified Compliance Officer, will clarify the rules, dispel common misconceptions, and equip you with practical strategies to code, document, and bill high-risk split/shared, incident-to & critical care E/M services with confidence. Don’t let audit risks or revenue losses catch your organization off guard — learn exactly what federal auditors are looking for and how to ensure your documentation and reporting stand up to scrutiny.
Learn how to navigate the proposed elimination of the Inpatient-Only list. Gain strategies to assess admission status, avoid denials, protect compliance, and address impacts across Medicare and non-Medicare payors. Essential insights for hospitals.
Happy National Doctor’s Day! Learn how to get a complimentary webcast on ‘Decoding Social Admissions’ as a token of our heartfelt appreciation! Click here to learn more →
CYBER WEEK IS HERE! Don’t miss your chance to get 20% off now until Dec. 1 with code CYBER25
CYBER WEEK IS HERE! Don’t miss your chance to get 20% off now until Dec. 2 with code CYBER24
