Real or a scam? Learn how LMH Health communicates with patients
Healthcare data hacks continue to make front-page news, and they’re happening close to home. You don’t have to look any farther than Liberty Hospital in Kansas City. On December 19, 2023, just a few days before Christmas, the hospital announced it was experiencing a “communications systems outage,” later confirmed to be a cybersecurity incident. It forced Liberty Hospital to cancel appointments and transfer patients to other metro hospitals. People seeking emergency care were redirected as well.
The Department of Health and Human Services (HHS) Office of Civil Rights oversees how companies protect health data and requires that healthcare providers report breaches of protected information. In 2023, HHS reported the highest number ever of major health data attacks, affecting 133 million people.
Healthcare data is valuable. Michael Williams, vice president and Chief Information Officer at LMH Health, said that bad actors know it can sometimes be much more valuable than financial data.
“If you’re trying to impersonate someone, you can use a social security number to apply for a credit card,” Williams explained. “When scammers have health data, they know more than just your name and date of birth. You can change your bank information, but you can’t change who you are.”
Michael Williams
Fortunately, LMH Health has not fallen prey to a cyberattack or had a patient healthcare data breach. Williams attributes much of that to the strong systems that the information technology team has implemented.
“We’ve got strong protocols in place to help ensure that bad actors aren’t getting malicious emails through that would cause harm,” he said. “We block more than 90% of all email that comes to LMH Health. Most of the email that gets blocked includes spam, email from an irreputable source or something that contains malicious code. Some days, it’s even closer to 98%. We’re blocking anything that could be harmful before it even hits the system.”
How do you reach out to me?
With cyberattacks occurring with more frequency, how can you be sure that a text or email from LMH Health is the real deal? Williams said that LMH communicates with patients through a variety of methods, including phone calls, texts and email, but it’s good to be cautious.
“People can mask their caller ID and it isn’t hard to make it look as if a phone call is coming from LMH Health,” he said. “Our teams will verify your name and date of birth, and we should know enough detail that the call isn’t coming from out of the woods. You should also be able to ask questions of us too.”
Williams explained that patients may also receive calls from Assistency, an agency LMH Health partners with for patients to pay their bills, get answers to billing questions and make payment arrangements.
“Assistency reaches out by phone to patients who have any bills, whether they’re current or overdue,” he said. “You should be able to question them and verify they have the right bill. They should be able to verify the dates you were seen.”
Emails patients receive from LMH Health come from an email address that ends in LMH.org and include a link toward the end to opt-out or remove yourself from future email correspondence. Hover over any links in the body of the email to inspect what web address you’ll be sent to. If it looks fishy, err on the side of caution.
“Look closely, as bad actors will use email addresses that look similar to trick you. Make sure it’s from lmh.org instead of lnh.org,” Williams said. “Does the hyperlink look like the expected website domain? If it feels too good to be true, it probably is.”
Reaching your care goals
This year, you also can expect technology to make your personal healthcare management simpler. If it’s time for your Medicare Annual Wellness Visit, flu shot, or breast cancer or cervical cancer screenings, you may receive a text or an email that will allow you to schedule your appointment right from your device. These notifications are made possible through LMH’s new partnership with Notable Health.
“Notable uses artificial intelligence (AI) to review electronic health records to determine where gaps exist,” Williams said. “We then reach out to patients through text and email so they can schedule their recommended care with the click of a button.”
LMH Health began using Notable in February 2024 to reach out to patients overdue for a Medicare Annual Wellness Visit. The text reads, “Your LMH Health provider wants to support you in achieving your health goals. Please follow the link below so we can further assist you.” When you click on the link, you are taken to a site that provides an online option at an LMH.org address to schedule a visit or receive a call from LMH, or gives the phone number to contact your primary care clinic.
LMH Health is also rolling out a new pre-registration process with the appointment reminders patients receive by email or text. If you receive a link from checkin.lmh.org, you can verify and update your information to save time when you arrive.
The majority of patients (96%) receiving texts or emails reminding them about an overdue Medicare Annual Wellness Visit have been satisfied with their experience. Comments include:
- No filling out forms in the office!
- The directions were easy to read.
- It was easy to follow and do.
If you’re concerned that a phone call, email or text is malicious, call the LMH Health clinic or department directly.
“Ask us if we really reached out to you. Our teams should be able to tell you if we sent you a reminder,” Williams said. ”Our number one priority is to protect your data. We have technical solutions in place - more than our regulatory bodies require – and we do a lot of education to help our staff understand why it’s important and how to protect you.”
