Think Before You Click: HSA and Benefits Enrollment Scams Explained
Open enrollment season is your opportunity to adjust your benefits, but it’s also an opportunity for scammers.
Learn how to spot and prevent HSA and benefit enrollment fraud.
Open enrollment is the time of year when employees review and update their workplace benefits. Unfortunately, it’s also a prime opportunity for scammers looking to steal sensitive information. Fraudsters often target Health Savings Accounts (HSAs), payroll systems, and employee benefits portals during enrollment season because employees expect to receive benefits-related messages.
Picture this: You receive what appears to be a legitimate email asking you to confirm or update your benefits information before a deadline. Since it’s open enrollment season, the message doesn’t seem unusual. You click the link, sign in, and unknowingly hand your login credentials over to a scammer. From there, scammers may gain access to your HSA funds, payroll details, and personal data.
Understanding Benefits & HSA Scams
Employee benefits fraud happens when fraudsters attempt to access workplace benefits accounts such as HSAs, payroll systems, or enrollment platforms. These scams often rely on phishing tactics, fake emails, and impersonation schemes meant to trick you into sharing sensitive information.
Common Types of Benefits Scams
1. Fake Enrollment Emails & Fraudulent Links: Scammers may send emails pretending to be from HR departments or benefits providers asking employees to verify or update their enrollment information. These messages often include malicious links that direct users to fake login pages.
2. HR or Benefits Provider Impersonation: Fraudsters may also contact employees by phone or text message while pretending to represent HR or a benefits company. They may ask for passwords, login credentials, or authentication codes.
3. Account Hijacking: Once a scammer gains access to an employee account, they may change direct deposit information, withdraw HSA funds, or file unauthorized claims.
4. Fraudulent Claims & Reimbursement Requests: Fraudsters sometimes use stolen personal information to submit fake medical claims or request additional documentation to gather even more sensitive data.
Warning Signs
Before responding to any benefits-related message, take a moment to look for common red flags.
Pressure to Act Urgently: Messages claiming you must “respond now” or risk losing coverage are meant to create panic and rush your decision-making.
Unexpected Enrollment Notifications: Be cautious if you receive confirmation emails about benefit changes you never made or enrollment activity you don’t recognize.
Unfamiliar Login or Password Reset Alerts: Notifications about password resets or login attempts you didn’t request may indicate someone is trying to access your account.
Non-Company Messages: Scammers may contact you from personal email addresses, unknown phone numbers, or unofficial communication platforms while pretending to represent your employer.
Tips to Help Protect Your Accounts
- Access benefits portals only through trusted company websites or bookmarked pages.
- Confirm suspicious requests directly with your HR department or benefits administrator using verified contact information.
- Avoid clicking links or downloading attachments from unexpected emails.
- Turn on multi-factor authentication whenever possible.
- Review your HSA, payroll, and benefits activity regularly for unauthorized changes.
- Create strong, unique passwords for every account.
What to Do If You Suspect Fraud
If you believe your benefits or HSA account has been compromised, act quickly.
- Notify your HR department or benefits administrator right away.
- Report suspicious activity to your bank or HSA provider.
- Reset your passwords and secure affected accounts immediately.
- Continue monitoring your accounts for additional fraudulent activity.
Jefferson Bank offers resources to help you stay protected against fraud. If you are a victim of fraud, report it to your bank and the FTC.
