Risk & Compliance in Los Angeles

California AG Dismantles $267M LA Hospice Fraud Ring — 21 Charged; DHCS Signals Intensified Audit Activity for All Medi-Cal Providers

California AG and DHCS dismantled a transnational fraud ring operating 14 fraudulent hospice providers in LA that used stolen Medi-Cal identities to bill $267M in false claims, with 21 charged and $70M+ recovered. While unrelated to FQHCs, this action is fueling federal scrutiny of all California Medi-Cal providers and signals DHCS will intensify audit and identity verification requirements — legitimate FQHCs should expect tighter claims review on crossover claims and dual-eligible billing.

AltaMed December 2025 Data Breach — Class Action Investigation Active Through April 2026

AltaMed (largest U.S. FQHC, 3,500+ staff, 600K+ patients) experienced a cybersecurity incident on December 14, 2025; class action investigation actively soliciting plaintiffs through April. Could affect patient trust and operational costs. Cybersecurity exposure for the country's largest FQHC has implications for HIPAA compliance posture across all CA FQHCs — peer FQHCs should review incident response plans, third-party vendor cybersecurity, and PHI handling protocols. Compounds with MMG Fusion 15M-individual dental software breach already in feed. AltaMed has not publicly disclosed scope of affected records.

Trump Administration Refers LA LGBT Center to HHS Inspector General — One of Four LGBTQ+ FQHCs Targeted Nationally

HHS General Counsel Mike Stuart referred the Los Angeles LGBT Center (along with Whitman-Walker Health DC, Callen-Lorde NYC, and Institute for Family Health NYC) to the HHS OIG for investigation, stemming from HHS Secretary Kennedy's December 2025 declaration targeting organizations providing gender-affirming care for minors. A 22-state lawsuit (Oregon v. Kennedy) challenged the actions; HHS agreed to pause exclusion notices but investigations continue. If exclusion proceeds, the LA LGBT Center would lose all federal Medicare/Medicaid reimbursement.

AltaMed Data Breach Reported — Largest CA FQHC Confirms Patient Data Exposure

AltaMed Health Services, California's largest FQHC serving 465,000+ patients across 60+ sites, confirmed a data breach discovered in December 2025 and reported in early 2026. Details on the scope and affected patient count are still emerging, but as the most prominent FQHC in the state, the breach underscores cybersecurity risks facing community health centers — particularly those with large digital footprints. AltaMed has been deploying Abridge AI scribes and expanding digital infrastructure, highlighting the tension between innovation and security.