Long Island Dental Office Manager Allegedly Stole $286K Over 4 Years

Of all the methods used in dental practice embezzlement, the simplest and most diagnostic is the redirection of payment routing. The Long Island case of Jeffrey Fernandez illustrates exactly why every practice owner needs to verify, today, that the routing information on file with their payers and merchant processors actually matches the practice's bank account.

What Happened

In May 2025, Nassau County police arrested Jeffrey Fernandez, 34, of Norwalk, Connecticut, on charges related to embezzlement from a dental practice in Great Neck Plaza, New York. According to the Nassau County Electronics Squad Fraud and Forgery Unit, Fernandez worked as the office manager at the practice and allegedly used that position to embezzle approximately $286,000 over a four-year period from January 2020 to July 2024.

The mechanism alleged in the case is unusually clean. Investigators reported that Fernandez allegedly changed the business routing account number associated with the dental practice from the dentist's actual bank account to his own personal bank account. Once the routing change was in place, payments that should have gone to the practice were redirected to Fernandez instead.

Fernandez was charged with two counts of second-degree grand larceny and criminal possession of a forged instrument. He was arraigned on May 28, 2025, at First District Court in Hempstead.

Why Routing Number Fraud Is Especially Dangerous

The genius and the horror of routing number fraud is that it does not require any tampering with the practice management system itself. The practice management system continues to show that payments were posted, applied to the right patients, and reconciled correctly. The bank statements show that the dentist's actual account never received those payments, but only if anyone looks. The two records sit in two different systems, and when no one is comparing them, the divergence can run for years.

Most dental practices have multiple incoming payment channels, each with their own routing instructions. Insurance EFTs go to whatever account the payer has on file with the practice. Patient credit card payments deposit through the merchant processor based on its routing instructions. Patient ACH payments use whatever account the practice provided. Each channel can be redirected independently, and a practice owner who is not personally verifying these instructions has no way to know if any of them have been changed.

The most common variants of this attack include changing the bank routing on file with one or more payers, changing the merchant processor's deposit account, intercepting EFT enrollment forms before they reach the legitimate bank, and creating new payer accounts using altered routing details for new contracts.

Once the routing is changed, the perpetrator does not have to do anything else. The funds simply flow to the wrong account. The practice keeps operating, the practice management system keeps recording payments as received, and the only way to discover the diversion is to compare what the practice management system claims was received to what the bank actually deposited.

Four Years and $286,000

The duration is the second most important detail of this case. Four years of redirected payments without detection means the practice's operational rhythm absorbed the loss without it being noticed. At an average of approximately $71,500 per year on what appears to be a multi-doctor practice, the loss was enough to be material but not enough to trigger a cash-flow crisis.

This is the typical signature of long-running dental practice embezzlement. The amount is significant in aggregate but moderate per month. The practice continues to function. The owner sees fluctuations in collections and attributes them to normal variation. The bank statements arrive each month and either go unread or are filed by the same person who is causing the discrepancy.

A reconciliation against bank deposits, performed independent of the office manager, would have surfaced this within the first month of the diversion. A practice that compares posted insurance payments against actual bank deposits as a routine monthly process catches routing-number fraud almost immediately. The pattern is too distinctive to hide. Posted insurance payments stop matching deposit totals, and the gap grows month over month.

What Practices Should Verify Right Now

The Fernandez case is a prompt for practice owners to verify, this week, that every payment routing on file with every counterparty is correct. The check is straightforward but rarely done.

Call your top five payers and verify the bank routing and account number they have on file. Most payer portals also display this information, but a phone call confirms the same data. The routing must match your actual bank account, the one you can see deposits in.

Log into your merchant processor's portal and verify the deposit account. Card processors are common targets because the routing change can be made entirely online without contacting the bank.

If you have an external billing service that handles your insurance enrollment, ask them in writing to confirm the bank routing on file for each payer. A legitimate billing service will provide this without resistance. A billing service that resists the request is itself a flag.

Set up email alerts on the practice's bank account for incoming deposits. Most banks support this. The alert volume can be high, but the value is that you see deposits as they happen rather than discovering missing deposits weeks later.

For the highest level of protection, set up a deposit-only account at the bank that has no withdrawal capability without dual authorization. All incoming payments deposit there. Operating funds are transferred from this account through a controlled process. This separation protects against routing-number fraud because the deposit account itself becomes a controlled chokepoint.

Why This Case Was Caught

Routing fraud cases are typically caught one of three ways. The perpetrator's spending becomes conspicuous enough to draw attention from law enforcement on an unrelated matter. The practice runs into a cash crunch that forces detailed financial review. Or the practice owner notices a specific gap, often after discovering one missing payment, and pulls the thread.

In the Fernandez case, public reporting indicates that police investigators followed the routing trail using bank records once an investigation was underway. The investigation appears to have begun based on practice-side suspicion, with bank records confirming the diversion pattern. The four-year duration suggests the suspicion was relatively recent, and the historical theft surfaced once the trail was followed.

For practice owners, the lesson is the value of acting on small suspicions. A single payment that does not show up where it should, a single explanation of benefits that does not match a deposit, a single payer who claims they sent a payment that is not in the system. Each of these in isolation is dismissible. The practice owners who catch routing fraud early are the ones who pull the thread on a single suspicious item rather than letting it pass.

What This Says About Office Manager Risk

Cases like Fernandez and Gutierrez show that the office manager role's risk is not specific to any one mechanism. Bank transfers, routing changes, voided patient receipts, refunds to mismatched accounts, and altered ledger entries are all variations of the same theme. The role concentrates access to the financial workflow, and a perpetrator can choose whichever mechanism happens to fit their access profile.

Defending against this does not require restricting good office managers. It requires building independent verification that operates regardless of which mechanism is used. A reconciliation tool that compares posted payments to bank deposits catches routing fraud, transfer fraud, and posted-not-deposited fraud with equal reliability. The same tool catches voided receipts and credit balance suppression. One independent layer addresses many possible mechanisms because they all eventually surface as a divergence between what the practice management system claims and what the bank shows.

Sources

The factual reporting in this article is drawn from public news coverage of the Fernandez case, including reporting from Nassau County police announcements and the Long Island Life and Politics outlet. All charges referenced are allegations, and the defendant is presumed innocent until proven guilty.

---

Zeldent's PMS-to-bank reconciliation runs daily and surfaces the pattern that routing-number fraud creates. Posted payments that do not match deposited funds are flagged immediately, regardless of which payment channel has been compromised. Schedule a demo to see how independent reconciliation closes the structural gap that this case relied on for four years.