OIG: CMS not doing enough to prevent fraud in EHRs

Laura Pedulli | | Health Exec | EMR/EHR

The Centers for Medicaid & Medicare Services (CMS) and contractors are not doing enough to address vulnerabilities within EHR systems that make them susceptible to fraud, according to the Office of the Inspector General (OIG).

OIG sent an online questionnaire to CMS administrative and program integrity contractors who use EHRs to pay claims, identify improper Medicare payments and investigate fraud. The investigative body also studied related CMS policies and guidance documents, and reviewed documents on EHRs and Medicare claims that CMS provides to its contractors.  

OIG concluded the following:

  • CMS and its contractors had adopted few program integrity practices specific to EHRs
  • Not all contractors reported being able to determine whether a provider had copied language or overdocumented in a medical record
  • CMS provided limited guidance to contractors on EHR vulnerabilities

The report recommends that: (1) CMS provide guidance to its contractors on detecting EHR-associated fraud and (2) CMS direct contractors to use providers’ audit log data. The OIG said that CMS agreed with the first recommendation and partially on the second.

Read the report here.

Laura Pedulli

Related Content

Private equity-backed cardiology group puts cloud-based technology in hands of its cardiologists
AI helps cardiologists deliver personalized healthcare—but there is still plenty of work to do
Indiana hospitals reduce nuisance alerts by 77% with medication decision support software
Leveraging machine learning to rapidly create clinical AI algorithms
How medication reconciliation data consolidation in the EHR enables better patient care
How are the best in KLAS Health IT vendor rankings created?

Around the web

Cardiovascular Business
Q&A: MedAxiom CEO explores key trends in cardiologist, cardiovascular surgeon compensation

Compensation for heart specialists continues to climb. What does this say about cardiology as a whole? Could private equity's rising influence bring about change? We spoke to MedAxiom CEO Jerry Blackwell, MD, MBA, a veteran cardiologist himself, to learn more.

Cardiovascular Business
Payment cuts and beyond: Key takeaways for cardiologists from the 2025 Medicare Physician Fee Schedule

The American College of Cardiology has shared its perspective on new CMS payment policies, highlighting revenue concerns while providing key details for cardiologists and other cardiology professionals. 

AI in Healthcare
A modest proposal to rally AI regulators around a simple game plan

As debate simmers over how best to regulate AI, experts continue to offer guidance on where to start, how to proceed and what to emphasize. A new resource models its recommendations on what its authors call the “SETO Loop.”