Cybersecurity News

John Riggi, AHA’s national advisor for cybersecurity and risk, provides insight into 2024’s health care cybersecurity challenges to help hospitals prepare for the next big cyberattack.

The never-ending barrage of ransomware and cyberattacks against the health care sector has only strengthened the resolve of hospitals and health systems to reinforce their defenses and protect safe access to care for patients and communities.

The FBI, National Security Agency and Cyber National Mission Force last week issued a joint advisory about recent actions of China-linked cyber actors compromising thousands of small or home office routers, firewalls, network-attached storage and other internet devices to create a botnet for malicious activity.

The Health Information Sharing and Analysis Center last week announced that Veeam, a software company that provides data protection, backup and disaster recovery solutions, issued a

The Cybersecurity and Infrastructure Security Agency Aug. 21 published guidance providing best practices for event logging to mitigate cyberthreats.

The AHA has released five new tip sheets designed to fortify crisis leadership competencies during emergency events such as cyberattacks, natural disasters and mass violence incidents.

The FBI, Cybersecurity and Infrastructure Agency and the Department of Defense Cyber Crime Center Aug. 29 issued a joint advisory to warn of Iranian-based cyber actors leveraging unauthorized network access to U.S. organizations, including health care organizations, to facilitate, execute and profit from future ransomware attacks by apparently Russian-affiliated ransomware gangs.

Cybersecurity experts from the AHA and Microsoft discuss the urgent need to build a cyber-strong workforce, particularly in rural hospitals and health systems, and how methods such as re-skilling can sustain permanent cyber readiness.

AHA Aug. 23 has named James “Scott” Gee as deputy national advisor for cybersecurity and risk.

The Department of Health and Human Services Health Sector Cybersecurity Coordination Center (HC3) this week released an advisory about Everest, a ransomware-as-a-service group increasingly targeting the health care field.

In his latest AHA Cyber Intel blog, John Riggi, AHA national advisor for cybersecurity and risk, explains why cybercriminals are shifting from directly targeting hospitals to hitting the third-party technology and service providers critical to supporting hospitals’ clinical care.

The Cybersecurity and Infrastructure Security Agency and FBI Aug. 8 released guidance on secure by design software products which includes resources to assess product security maturity and whether a manufacturer follows secure by design principles.

It seems like barely a week goes by without a new cyberattack that affects health care providers.

CISAand FBI today issued an updated advisory on the BlackSuit ransomware group, providing information on historically observed tactics, techniques, and procedures and indicators of compromise associated with the group. BlackSuit's cyberattacks have impacted health care and other industries.

Cybercriminals are ramping up attacks on health care systems throughout the United States, with a majority of these crimes originating from international, state-sponsored actors.

John Riggi, AHA national advisor for cybersecurity and risk, explains why cybercriminals are shifting from directly targeting hospitals to hitting the third-party technology and service providers critical to supporting hospitals’ clinical care. He highlights four key strategies to help hospitals and health systems strengthen their third-party risk management program against the debilitating effects of the next, inevitable Change Healthcare-like cyberattack.

OneBlood, a nonprofit organization that provides blood and blood products to health care providers in Florida, Georgia, Alabama, North Carolina and South Carolina, including more than 350 hospitals, July 31 said it is experiencing a ransomware event that is impacting its software system and disrupting some of its operations to deliver blood. 

The Department of Justice July 25 announced the indictment of North Korean national Rim Jong Hyok for allegedly conspiring to hack and extort U.S. hospitals and health care providers.

The cybersecurity firm CrowdStrike July 24 posted online a preliminary post incident report following a non-malicious global technology outage which began July 19 and affected many industries, including health care.

There has been a sharp uptick this year in ruthless tactics by cybercriminals, who are now directly threatening patients with the release of sensitive information, photos and medical records. John Riggi, AHA national advisor for cybersecurity and risk, talks with two experts about the rise in these tactics and what’s needed to fight back and prepare against these threat-to-life crimes.