Fake Medicare or Medicaid benefit suspension, card expiry, or enrollment phishing — fraudulent email impersonating CMS, Medicare, or a Medicaid agency claiming the recipient's Medicare card has expired, their Medicaid benefit is suspended, or their coverage will be terminated — directing them to click a link to verify their Medicare beneficiary number, SSN, date of birth, or bank account to renew coverage or receive a replacement card

Phishing emails impersonating CMS (Centers for Medicare & Medicaid Services), Medicare, Medicaid, or Medicare Advantage plans — claiming the recipient's Medicare card has expired, their Medicaid benefit is suspended, their Part B coverage will be terminated, or a new card is waiting — then directing them to verify their Medicare Beneficiary Number, provide their SSN, date of birth, or bank account to renew coverage or receive a replacement card. Medicare phishing is highly effective because 65+ million Americans have Medicare coverage and many receive legitimate benefit-related mail. Key facts: (1) Medicare covers roughly 65 million Americans (seniors 65+ and disabled individuals) — the population is specifically targeted because they are more likely to respond to urgent healthcare coverage threats, and losing healthcare coverage is one of the most alarming scenarios for seniors; (2) The Medicare Beneficiary Identifier (MBI) replaced SSNs on Medicare cards after 2018 — but scammers still ask for SSNs alongside MBIs, framing it as "verification," exploiting that many seniors still associate their Medicare number with their Social Security number; (3) Medicare Advantage open enrollment periods (Oct 15–Dec 7 and Jan 1–Mar 31) create predictable scam waves — fraudulent "enrollment deadline" emails spike during these windows with fake urgency about coverage lapsing if the recipient doesn't act immediately; (4) CMS/Medicare never contacts beneficiaries by email about card renewal, benefit suspension, or coverage termination — all official communications arrive by physical mail from a .gov address; Medicare cards are mailed automatically without the beneficiary needing to "activate" them online; (5) Medicare fraud costs the US an estimated $60–90 billion annually — identity theft using stolen MBIs enables fraudulent billing for medical services the victim never received. Warning signs: unsolicited email about Medicare card expiry or benefit suspension, request for MBI or SSN via email link, non-.gov sender domain.