Cybersecurity

Cybersecurity vulnerabilities and intrusions pose risks for every hospital, and its reputation.

While there are significant benefits for care delivery and organizational efficiency from the expanded use of networked technology, Internet-enabled medical devices and electronic databases for clinical, financial and administrative operations, networked technology and greater connectivity also increase exposure to possible cybersecurity threats that require hospitals to evaluate and manage new risks in the context of federal privacy rules and related polices.

Hospitals can prepare and manage such risks by viewing cybersecurity not as a novel issue but rather by making it part of the hospital’s existing governance, risk management and business continuity framework.

Hospitals also will want to ensure that the approach they adopted remains flexible and resilient to address threats that are likely to be constantly evolving and multi-pronged.

This web page provides resources for hospital leaders as well as the latest updates from federal officials to help manage cyber threats.

Cyber Threat Intelligence

This section contains publicly available Cyber Threat Intelligence reports including FBI and TLP-White reports. For access to restricted distribution reports see members-only cybersecurity resources. FBI Alert AB-000102-MW: Chinese APT10 intrusion activities target Government, Cloud-C...

Cybersecurity and Risk Advisory Services

At present, John Riggi, senior advisor for cybersecurity and risk, is available to provide: Strategic Cybersecurity and Risk Advisory Services Related To: Cyber threat and risk profile of the organization Information security and risk mitigation strategy development and integration w...

Related Resources

Member
Throughout 2018 and 2019, malicious cyber actors used desktop sharing software to facilitate a range of network intrusion activities, using both authorized and…
Member
The FBI continues to observe U.S. businesses’ reporting significant losses caused by cyber insider threat actors.
Member
Letter/Comment
Public
AHA letter to Senator Mark Warner regarding reducing cybersecurity vulnerabilities in the health care sector.
Member
Between at least June 2018 and January 2019, Nigerian cyber criminals have targeted and accessed healthcare claims payment processors throughout th
This two-part special report explores what hospital and health-system boards can do to reduce cyber risks and vulnerabilities.