Three OIG Settlements in One Month Just Reminded Providers Why Credentialing Can't Be an Afterthought

3 OIG Settlements That Show Why Credentialing Matters

Three recent HHS-OIG enforcement actions — totaling over $1.4 million in penalties and one 10-year exclusion — all trace back to the same gap: licenses that lapsed and credentials that went unchecked. Here's what happened, and how continuous monitoring prevents it.

Learn MoreSchedule a Demo

Three OIG Settlements in One Month Just Reminded Providers Why Credentialing Can't Be an Afterthought

If you needed a reminder that credentialing gaps are expensive, the HHS Office of Inspector General (OIG) just delivered three of them. Three separate enforcement actions, all recent, all different organizations, all telling the same underlying story: an unlicensed or excluded individual slipped through, and the organization paid for it — in one case, for a decade.

Here's what happened in each case, and what it means for any organization that employs, contracts with, or bills on behalf of healthcare staff.

Case 1: Unlicensed Nurse Costs a Home Health Agency $379,000

Residential Home Health, LLC, based in Troy, Michigan, self-disclosed to OIG that it had submitted claims to federal healthcare programs for services provided by a nurse whose license was not valid at the time. The agency agreed to pay $379,048.95 to resolve allegations that it violated the Civil Monetary Penalties Law.

The settlement amount wasn't arbitrary — it reflected the full salary and benefits paid to that individual for the entire period during which their license was invalid. In other words, the cost wasn't tied to how many patients were harmed or how much was fraudulently billed; it was tied to how long the lapse went undetected.

The takeaway: a license expiration date is not a formality. It's a hard line, and once it's crossed, every claim tied to that individual becomes a liability — retroactively.

Case 2: A Municipal EMS Program Pays Over $1 Million

The City of Tempe, Arizona also self-disclosed, and its case shows how credentialing risk compounds. Tempe's EMS program had submitted claims for services delivered by unlicensed emergency medical technicians and paramedics. On top of that, a former paramedic had signed treatment, privacy, transport, and billing authorization forms on behalf of patients — signatures OIG deemed invalid because that individual was no longer authorized to provide or document care.

Tempe agreed to pay $1,050,629.81 to resolve the allegations.

The takeaway: this wasn't one licensing failure — it was two overlapping ones. Unlicensed staff providing care, and improperly authorized documentation compounding the exposure. Larger organizations with more staff and more moving credentialing pieces face proportionally larger risk when tracking is manual or inconsistent.

Case 3: No Self-Disclosure, No Settlement — Just a 10-Year Exclusion

Sunshine Care Partners, Inc. and its owner, Rusty McMurray, didn't get the option of a negotiated settlement. OIG excluded both the company and McMurray from participation in all federal healthcare programs for 10 years. The exclusion followed findings that the company billed for complex chronic care management services that were never actually delivered — while staff instead performed basic administrative tasks like taking patients' temperatures and organizing paperwork.

The takeaway: exclusion is the OIG's most severe tool, and it doesn't just affect the excluded individual or entity going forward. Any organization that unknowingly employs, contracts with, or bills through an excluded person or company inherits that liability the moment the relationship begins — even if the exclusion happened somewhere else, for something the hiring organization had nothing to do with.

The Pattern Behind All Three Cases

Look past the different dollar amounts and different types of organizations, and the same operational gap shows up every time:

  • Licenses expired or lapsed without anyone catching it in time.
  • Staff credentials weren't verified on an ongoing basis — only at hire, or not at all.
  • Nobody was continuously checking exclusion status against the OIG List of Excluded Individuals/Entities (LEIE), so a status change didn't trigger any internal review.

None of these are exotic fraud schemes. They're the kind of gap that opens quietly, keeps billing normally for months, and only becomes visible after a self-disclosure, a whistleblower, or an audit.

Why Manual Credentialing Reviews Don't Catch This in Time

Most healthcare and long-term care organizations still handle credentialing the same way: a spreadsheet, a shared drive, an HR reminder set for renewal season. That process works fine until:

  • A license expires between scheduled reviews.
  • An employee's exclusion status changes mid-year, outside the normal check cycle.
  • A vendor or contracted individual's credentials are never reviewed at all, because they're outside the direct hiring pipeline.

Every one of the three cases above involved exactly this kind of blind spot — not a lack of policy, but a lack of continuous enforcement of that policy.

How Perla Closes the Gap

Perla is built specifically to close this gap. Perla automates:

  • OIG exclusion checks against the LEIE, run continuously rather than on an annual or quarterly cycle
  • License verification across employees, facilities, and equipment
  • Expiration tracking, with alerts before a license lapses — not after a claim has already gone out
  • Credentialing management for staff, vendors, and contracted individuals, so nobody falls outside the review process just because they're not a W-2 employee

Instead of discovering a lapsed license or a newly excluded vendor during an audit — or worse, during a whistleblower investigation — Perla flags it before it becomes a six- or seven-figure settlement, or a 10-year exclusion.

The Real Question for Compliance Teams

Self-disclosure, as in the Residential Home Health and City of Tempe cases, is the right move when something slips through — it materially reduces penalties compared to what OIG can impose otherwise. But the better outcome is never needing to make that disclosure in the first place.

If your organization is relying on manual spot-checks or annual reviews to catch licensing and exclusion issues, it's worth asking directly: how long would a lapsed license, an invalid signature, or an excluded vendor go unnoticed under your current process?

Perla is a credentialing automation platform built for long-term care and healthcare organizations, offering OIG exclusion checks, license verification, expiration tracking, and credentialing management for employees, facilities, and equipment.

Book a DemoLearn More

Take Your Practice to the Next Level

Get started with Perla platform and grow your practice.

Book a Demo