Article

Five Hidden Costs of Bots in Your Healthcare Contact Center

logo
Jason Barr

VP, Strategic Sales, Healthcare • July 1, 2026 (UPDATED ON July 1, 2026)

15 minutes read time

Most healthcare organizations know bots are calling, but few have measured what it costs them.

Healthcare contact centers handle millions of interactions a year: members checking benefits, patients booking appointments, providers verifying coverage, caregivers working through insurance for someone they love.

Every one of those calls carries clinical, financial, and legal weight. Organizations have spent years getting them right, from staffing and IVR design to the compliance controls that let sensitive conversations happen at scale.

Almost all of it assumes the caller is a person. That assumption is breaking down.

Pindrop recorded a 1,390% surge in AI voice attacks between Q4 2024 and Q1 2026. At one healthcare organization, bots now drive more than half of all fraud.

Bots are already reaching your organization. The open question is what they cost, and whether anyone is measuring it.

The measurement problem

Each team measures its own lane well. Operations watches volume and handle time. Fraud traces losses. Compliance reviews improper data exposure. The gap opens between the lanes.

But a bot campaign doesn’t stay in one lane. It runs as a single motion across all of them, and in any one team’s view it looks small. Take a campaign that starts as reconnaissance and ends in account takeover:

  • To operations, the recon calls are just volume: short IVR sessions that self-serve and hang up. Containment even looks good.
  • To fraud, the recon phase produces no loss, so there’s no case to open. The loss surfaces weeks later and downstream, where it reads as a one-off digital account takeover.
  • To compliance, the calls that disclosed balances look like ordinary self-service, because the caller cleared authentication.
  • To CX, the extra queue load blends into a busy week.

Every team’s read is accurate, but the campaign as a whole is much harder to see.

Marketing

That’s the real gap: the cross-channel line of sight to recognize one recon-to-takeover campaign instead of a handful of disconnected blips. And that view rarely has a clear owner, so the cost can stay hidden even when every individual dashboard looks healthy.

Hidden cost #1: You’re paying for every bot call

Every call consumes resources whether a person places it or not: IVR capacity and licenses, authentication compute, agent time, queue slots, escalation paths.

Most healthcare contact centers were sized for human volume. Staffing, IVR design, and licensing were calibrated to a human-paced flow. Automated traffic broke that assumption, and it now arrives in several forms: provider offices verifying benefits and prior authorization, third parties handling billing and scheduling, pharmacy refill systems, and fraud operations probing IVRs at scale.

Some of that automation is legitimate, some unknown, some hostile, and many organizations can’t reliably tell which. So they carry the infrastructure cost for all of it. Bot volume also quietly distorts the numbers leaders rely on: IVR containment looks healthy when bot calls that never reach an agent count as successful self-service, and cost-per-call slips when a share of calls involve no real member.

The question few contact center leaders can answer today: what share of our volume is non-human? Until that baseline exists, every efficiency gain is measured against a denominator that may be inflated.

Hidden cost #2: Your authentication was built for a world that’s gone

Knowledge-based authentication, date of birth, last four of the SSN, member ID, made sense when stolen data was scarce and fraudsters worked one call at a time. That world is gone.

Two things changed at once; the data got cheap: stolen SSNs and account numbers sell for $8 to $35 on dark-web markets, and nearly 60% of organizations report fraudsters using compromised PII to clear KBA. And the scale stopped being human: fraudsters bypass KBA in more than half of attempts and pass OTP challenges about a quarter of the time, while AI lets one attacker run those attempts en masse. By Q1 2026, AI-backed activity reached roughly 8.7% of contact center fraud, up from <1% a year earlier.

When breached data is a commodity and delivery is automated, static challenge questions stop working as identity controls. They become friction for legitimate callers.

The instinct when KBA fails is to add more of it. That makes things worse in three concrete ways:

  • It already adds 30 to 60 seconds of handle time to every legitimate call.1 For an organization managing 10 million calls, that’s roughly $2.8M to $5.5M in agent labor alone.
  • Failed verification pushes callers to abandon and call back, so the friction compounds into repeat contacts.
  • It impacts patient satisfaction, showing up in NPS scores and impacting CAHPS and Star Ratings, which gate Medicare Advantage quality bonuses worth about $12.7B industry-wide in 2025.

And it still doesn’t stop the attacker, who holds the same data the questions test against.

Hidden cost #3: The reconnaissance that never trips an alert

This one is easy to underestimate, because it often produces no immediate loss. No claim, no account change, no balance moved. The IVR handles the call, it ends, nothing flags. The point of those calls is intelligence. The theft comes later.

Bot reconnaissance against IVRs follows a recognizable pattern:

  • Account validation: confirming a member ID or SSN maps to a real, active account
  • Balance details: pulling balances and history from self-service flows
  • Authentication mapping: learning which questions the IVR asks, and in what order
  • Workflow gaps: finding the sequences that lead to address changes, password resets, and account unlocks

HSA accounts are a favorite target. Bots validate an account through the IVR, then socially engineer an agent into a contact change, usually a phone number, which opens the door to a digital password reset and full takeover. In one documented engagement, Pindrop helped a healthcare services organization protect a collective $73M+ million in patient accounts, targeted by >30,000 bot-driven calls over a one year period.3

What makes attacks like this scale is repetition at machine speed. Once bots find a workflow gap, they run it thousands of times a week, a pace human fraud operations cannot match. And the exposure begins at the IVR, in self-service, often before any fraud alert fires. If your detection starts at the agent or the account change, it starts downstream of the attack.

Hidden cost #4: Compliance exposure that’s gone unmapped

Healthcare runs under demanding compliance rules. PHI disclosures must be documented, access decisions must be defensible, and audit trails must show that information was protected and authorization validated. Most of those frameworks assume the interaction happened between two people.

Bot traffic breaks that assumption, and it raises a few questions an auditor may ask:

  • Can we show identity was authenticated before PHI or account data was disclosed?
  • Do our audit trails capture IVR self-service activity, or only agent-handled events?
  • If an automated caller reached PHI through self-service, can we demonstrate that access was authorized?

The policy ground is shifting to cover synthetic actors. NIST’s updated identity guidance, SP 800-63-4, instructs organizations doing remote identity proofing to run presentation-attack detection and to scan media for signs of AI-generated content and deepfakes, and it adds controls to block automated attacks on enrollment. The FBI has warned about AI-cloned voices in impersonation scams, and the AMA has called for protections against deepfake impersonation of physicians. CMS issued a Request for Information (RFI) to inform potential program-integrity measures, including those that shape how CMS and healthcare organizations identify and protect against fraud, waste, and abuse.

Organizations that can answer the audit questions with documentation are building an advantage. The ones that can’t are carrying risk most legal teams haven’t priced.

Hidden cost #5: Real callers foot the bill

When bots consume capacity, the burden lands on everyone else. Wait times climb. Authentication friction grows as teams add verification layers that hit every caller. Agents get tied up by traffic that should have been routed differently. Members who hit friction abandon and call back, adding more volume.

Many patient and member experience programs, like CAHPS, Star Ratings, NPS, etc. are fighting friction from non-human traffic, friction those programs exist to reduce.

Security and experience can improve together. One large national payer deployed passive authentication and cut verification time by 60 to 75 seconds per matched call, matched about 75% of eligible calls, credited roughly $1 per call in savings, and lifted IVR containment by a point, with security improving at the same time.4 Those outcomes trace back to one upstream decision: getting the identity call right at the start. When the system knows in real time whether it’s a human, whether they’re risky, and whether they’re the right person, the rest improves with it.

What to measure now

AI-enabled fraud is operating at scale today, in environments that weren’t built to detect or measure it. Human detection of AI-generated content runs about even with a coin flip, so this isn’t a gap teams close by listening harder.

The organizations getting ahead are asking five questions:

1.

What share of our contact center volume is non-human?

2.

Are our IVR self-service flows reachable by automated callers, and what data can they pull?

3.

Can we detect synthetic voice, replay, and bots in real time, before trust is extended?

4.

What’s our audit posture for identity decisions on calls we can’t classify as human?

5.

Would our current controls catch a 60-day bot reconnaissance campaign before losses occurred?

The costs of bots in healthcare are growing. The only real question is how long they stay hidden.

Read the article

Healthcare contact center hidden costs FAQs

Most healthcare organizations don’t know, and that’s the core problem. Pindrop recorded a 1,390% surge in AI voice attacks between Q4 2024 and Q1 2026, and at one healthcare organization, bots now drive more than half of all fraud.

Automated traffic arrives in several forms: provider offices verifying benefits and prior authorization, third parties handling billing and scheduling, pharmacy refill systems, and fraud operations probing IVRs at scale. Some of it is legitimate, some unknown, and some hostile—and most organizations can’t reliably tell which is which.

KBA relies on data like date of birth, SSN digits, and member ID, which is data that’s now cheap and widely available. Stolen SSNs and account numbers sell for $8 to $35 on dark-web markets, and nearly 60% of organizations report fraudsters using compromised PII to clear KBA. Fraudsters bypass KBA in more than half of attempts and pass OTP challenges about a quarter of the time, and AI lets one attacker run those attempts at scale. By Q1 2026, AI-backed activity reached roughly 8.7% of contact center fraud, up from <1% a year earlier.

Added verification adds 30 to 60 seconds of handle time to every legitimate call.¹ For an organization managing 10 million calls, that’s roughly $2.8M to $5.5M in agent labor alone.² It also drives repeat contacts when failed verification causes callers to abandon and call back, and it impacts NPS, CAHPS, and Star Ratings — which gate Medicare Advantage quality bonuses worth about $12.7B industry-wide in 2025. And critically, it still doesn’t stop attackers who already hold the data the questions test against.

Bot reconnaissance follows a recognizable pattern: account validation (confirming a member ID or SSN maps to a real account), pulling balance details, mapping which authentication questions the IVR asks and in what order, and finding workflow gaps that lead to address changes, password resets, or account unlocks. It’s hard to detect because it produces no immediate loss — no claim, no account change — so nothing flags. The theft happens later, downstream of the recon.

In one documented engagement, Pindrop helped a healthcare services organization protect a collective $73M+ in patient accounts that were targeted by more than 30,000 bot-driven calls over a one-year period.³ Bots typically validate an account through the IVR, then socially engineer an agent into a contact change (usually a phone number), opening the door to a digital password reset and full takeover.

Compliance frameworks assume PHI disclosures happen between two people. Bot-driven self-service calls raise unanswered audit questions: Was identity authenticated before disclosure? Do audit trails capture IVR activity, or only agent-handled events? Can authorized access be demonstrated for automated callers? NIST’s updated identity guidance, SP 800-63-4, now instructs organizations to run presentation-attack detection and scan for AI-generated content in remote identity proofing. The FBI has warned about AI-cloned voices in impersonation scams, the AMA has called for protections against deepfake impersonation of physicians, and CMS issued a Request for Information (RFI) on program-integrity measures related to fraud, waste, and abuse.

Yes. One large national payer deployed passive authentication and cut verification time by 60 to 75 seconds per matched call, matched about 75% of eligible calls, credited roughly $1 per call in savings, and lifted IVR containment by a point — with security improving simultaneously.⁴ The outcome traces back to one upstream decision: getting the identity call right at the start, so the system knows in real time whether the caller is human, risky, or who they claim to be.

Because human detection of AI-generated content runs about even with a coin flip. This isn’t a gap that closes by listening harder — it requires real-time detection systems, not human judgment calls.

Five questions matter most: (1) What share of volume is non-human? (2) Are IVR self-service flows reachable by automated callers, and what can they access? (3) Can synthetic voice, replay, and bots be detected in real time, before trust is extended? (4) What’s the audit posture for calls that can’t be classified as human? (5) Would current controls catch a 60-day bot reconnaissance campaign before losses occur?

Sources and citations

¹ Based on data derived from Pindrop case studies, MSUFCU and a large U.S. insurer.
² Cost model assumptions: 10 million annual calls; agent cost $33/hour (~$0.55/minute, base wage only); KBA handle-time impact of 30–60 seconds per call per Pindrop, “Is Your Voice Security Stack Defensible in the Age of AI?,” February 2026; data derived from Pindrop case studies, MSUFCU and a large U.S. insurer.
³ Anonymous Pindrop customer case study, HSA exposure analysis, May 2025 – April 2026.
⁴ Pindrop customer case study, operational impact analysis, 2026.

Digital trust isn’t
optional—it’s essential

Take the first step toward a safer, more secure future for your business.