Record-setting health care fraud takedowns and lab-centered prosecutions have reset the compliance baseline, forcing diagnostics leaders to prove that every dollar paid and every test billed can withstand statutory, clinical, and coding scrutiny. Momentum from the Department of Justice’s 2025 National Health Care Fraud Takedown—charging 49 defendants tied to more than $1.1 billion in alleged telemedicine and genetic testing fraud—has sharpened a clear enforcement map: inducements that drive volume, marketing that blurs medical necessity, and billing that stretches coding or coverage rules invite fast, coordinated action. The picture is not guesswork. Resolutions by NEXT Molecular Analytics and LTD Holding LLC (Labtech Diagnostics), the Ninth Circuit’s EKRA opinion in United States v. Schena, and civil recoveries over misused CPT codes have turned gray areas into well-lit risk zones. The signal to laboratories is unmistakable: design relationships and revenue cycles for proof, not hope.
AKS: Inducements, Intermediaries, and Lessons
The Anti-Kickback Statute continues to anchor remuneration enforcement because it tracks real-world incentives that skew medical judgment. Prosecutors are prioritizing cases where “consulting,” “medical director,” or commission arrangements mask payments that rise and fall with test volume or referral value. In December 2025, NEXT Molecular Analytics agreed to pay at least $758,000 after the government alleged sham professional fees and marketer commissions that correlated with referrals. Around the same time, Clinical laboratory LTD Holding LLC—formerly Labtech Diagnostics—and its founder, Joseph Labash, reached at least a $6.8 million resolution, with Labash pleading guilty to five counts of paying kickbacks. The lesson is structural: labels and intermediaries are evidentiary gloss, not legal shields.
Building on this foundation, enforcement teams are pairing AKS theories with the False Claims Act to pursue claims “tainted” by inducements, even when the billed tests were actually performed. That linkage matters for laboratories using independent contractor marketers or physician-facing retainers. If compensation rises with orders, a court can infer intent to induce, and downstream claims face FCA exposure. Practical compliance pivots on provable fair-market value for defined services detached from volume, documentation of time and deliverables, and internal checks that detect referral-linked spikes. Governance tools—such as contract playbooks that forbid percentage-of-orders fees and dashboards that flag outlier ordering tied to paid relationships—have become operational necessities rather than policy niceties.
EKRA After SchenWhat Counts as Undue Influence
EKRA reshaped laboratory risk because it reaches private payers and diverges from AKS safe harbors, creating exposure even for arrangements that appear compliant under traditional rules. The Ninth Circuit’s decision in United States v. Schena supplied the first appellate blueprint: percentage-based marketer compensation is not automatically unlawful under EKRA, but it crosses the line when joined with undue influence—misleading claims, pressure on providers, or promotion unmoored from clinical indications. In Schena, prosecutors showed deceptive statements about allergy and COVID-19 capabilities and targeting of less sophisticated providers, weaving remuneration and messaging into a single unlawful tapestry. The Supreme Court’s certiorari denial left that construction in place and influential across jurisdictions.
This approach reframes how to evaluate marketing pipelines. A contract that passes a rate analysis may still fail if sales conduct inflates test performance, overstates coverage, or treats necessity as a closing tactic. Compliance responses must therefore move beyond pay-plan math into behavior oversight: pre-clearance of promotional decks and scripts; training that ties every claim to peer-reviewed sources, CPT descriptors, and payer policies; randomized call shadowing and documentation reviews; and documented discipline when field teams deviate. Where any variable compensation persists, controls should cap earnings unrelated to clinical appropriateness, require call-level attestations, and prohibit “guaranteed reimbursement” pitches. EKRA’s breadth means private-payer campaigns need the same rigor as Medicare-facing efforts, with the added complexity that missteps can trigger both EKRA charges and FCA liability.
Medical Necessity: Documentation That Withstands Scrutiny
Medical necessity is the throughline in recent actions, shaping civil settlements and criminal prosecutions alike. Gulfcoast Eye Care paid $615,000 in May 2025 for billing medically unnecessary trans-cranial doppler ultrasounds, with allegations of preemptive diagnoses unsupported by histories or results; five Florida ophthalmology practices soon followed with nearly $6 million in related resolutions. Genetic testing remains a hot zone. Two telemarketing operators drew sentences after steering beneficiaries into unneeded cancer genetic (CGx) tests, causing $17.3 million in false claims through kickback-fueled ordering. This year added heft: a Florida defendant pleaded guilty in a $52 million unnecessary genetic testing scheme, and a Texas lab owner was convicted in a $328 million cardiovascular genetic testing fraud. The pattern is uniform: remote ordering, boilerplate indications, and marketer-driven volume collapse under review.
To withstand scrutiny, documentation must read like medicine, not marketing. That means patient-specific rationales tied to symptoms, family history, and differential diagnosis; clear indication that results will change management; and alignment with authoritative clinical criteria. High-dollar or specialized tests—CGx panels, cardiovascular risk assays, and discrete neurology studies—warrant pre-billing medical necessity reviews by clinicians trained to apply payer coverage notes and society guidelines. Embedding decision support at order entry can filter non-indicated requests, while secondary review before claim submission adds a failsafe. When discrepancies appear—such as identical narratives across dozens of patients—compliance teams should pause billing, request clarifying notes, and retrain involved providers. A culture that treats necessity as a checkpoint, not a rubber stamp, is the most durable shield.
Coding, Coverage, and Billing Integrity
Coding and coverage errors are not mere technicalities; they are now marquee FCA targets with eight-figure stakes. In September 2025, Semler Scientific Inc. and Bard Peripheral Vascular Inc. agreed to pay $29.75 million after allegations that photoplethysmography tests did not meet CPT requirements and lacked Medicare coverage, yet were promoted for reimbursement and billed. The case reflected a recurring arc: a device or test positioned as an easy add-on, optimistic coding advice, and claims that bypass published policy prerequisites. Laboratories that assume coverage parity across payers, or rely on legacy code mappings without revalidation, face similar exposure. Misalignment multiplies risk when marketing amplifies reimbursement narratives while clinical indications remain thin.
A durable countermeasure is a closed-loop revenue integrity program that connects market access, medical affairs, and billing operations. Each test should be mapped to exact CPT descriptors and payer coverage criteria, with internal memos citing policy IDs and effective dates. Order portals can enforce required documentation elements tied to codes, while claim scrubbers verify both necessity and coverage before submission. Promises about reimbursement should be sourced to written policies, not anecdotes, and promotional materials should survive compliance redlining before distribution. Post-payment, denials and edits should feed dashboards that surface outliers by provider, test, and code, prompting root-cause analysis rather than appeals by rote. Contract terms with marketers and distributors can reserve clawback rights for misstatements about coding or coverage and require cooperation in audits, closing gaps that often widen under real-world pressure.
Risk Management in Practice: Governance That Meets the Moment
Governance transforms policies into outcomes when it centers on measurable risk signals. Compliance committees that review dashboards for referral-linked compensation, outlier ordering, and denial clusters can intervene before patterns calcify into cases. Fair-market-value assessments should be refreshed regularly, not left to age into inaccuracy as volumes shift. Contract templates can narrow permissible services, ban percentage or per-specimen fees, and require contemporaneous work logs. Internal audit plans gain traction when they sample marketer interactions, analyze sales call notes for risky claims, and compare promotional messaging against clinical and coverage sources. Whistleblower channels need teeth: documented investigations, corrective action plans, and termination authority when risk persists.
Technology can reinforce these guardrails without turning workflows into molasses. Rule engines at order entry can block non-covered indications and require uploads of chart notes or genetic counseling attestations for CGx orders. Natural language processing can flag repetitive, boilerplate justifications across patient files. Payment systems can disable variable bonuses when compliance red flags surface, reinstating them only after remediation. Training should be event-driven—new code launches, payer policy updates, or recent settlements—so staff connect lessons to daily decisions. Above all, governance must give compliance leaders line of sight into marketing and growth strategies early, embedding guardrails during design rather than post hoc repair.
The Road Ahead: Actionable Steps for Resilient Compliance
The enforcement record made clear that safeguards succeed when they function as habits, not heroics. Laboratories positioned to avoid headlines adopted four durable moves. First, they elevated medical necessity by requiring patient-specific rationales, clinician review for high-risk tests, and decision support aligned to coverage criteria. Second, they recalibrated compensation by purging volume- and value-based payments to referring sources and independent marketers, replacing them with fixed, documented fees for defined services. Third, they tightened messaging through pre-approval of materials, live monitoring of sales conduct, and zero tolerance for “guaranteed coverage” claims. Fourth, they closed the loop on revenue integrity, tying code selection, coverage checks, and denial analytics into a single governance spine that informs training and contracts in real time.
Translating these moves into action involved concrete milestones rather than slogans. Within the next quarter, organizations stood up cross-functional review for any marketer arrangement touching private payers, applied EKRA checklists that probe for undue influence, and re-papered contracts with clawbacks and termination rights for compliance failures. Order platforms added hard stops keyed to CPT descriptors and LCD or policy prerequisites, while audit teams launched rolling reviews of CGx and cardiovascular panels. Compliance software captured attestations for every reimbursement claim made in the field. As enforcers leaned on data to spot anomalies from marketing to billing, resilient laboratories answered with data of their own—traceable necessity, clean compensation architecture, and coverage-proofed codes—which formed a credible narrative when questions arrived and, often, kept inquiries from starting at all.
