AHA collaborates with Health-ISAC to prepare health care leaders for SolarWinds-type cyber threats

Apr 12, 2021 - 02:50 PM
Cybersecurity Lock on Gold Wall

AHA and the Health Information Sharing and Analysis Center (Health-ISAC), a non-profit member organization for sharing cyber threat intelligence and best practices, today released a joint white paper to help senior health care leaders understand and respond to certain cyber risks to their enterprise networks.

The paper also presents a detailed analysis of characteristics that allowed the SolarWinds Orion performance-monitoring platform to access multiple public and private networks.

John Riggi, AHA senior advisory for cybersecurity and risk, said, “This joint intelligence product is significant for two reasons. First, it is written for both technical and non-technical leaders. Through its detailed analysis of the SolarWinds compromise, it explains the strategic business risk and the technical cyber risk exposure presented by certain enterprise-wide IT systems. Second, it represents the first strategic cyber threat intelligence product produced as the result of collaboration between the AHA and the Health-ISAC. This collaboration between our two organizations will no doubt enhance the breadth and depth of cyber threat intelligence sharing for the entire health care field.” 

For more on this and other cybersecurity and risk issues, hospital and health system leaders may contact Riggi at jriggi@aha.org
 

Related News Articles

Headline
Microsoft issues alert on vulnerabilities in ongoing SharePoint attacks 
Microsoft July 19 issued an alert about active attacks from vulnerabilities targeting SharePoint servers used within organizations. The incidents have not…
Headline
AHA blog: Why and How to Incorporate Physical Security Risk into Your Enterprise Risk Management
In his latest AHA Cyber and Risk Intel blog, Scott Gee, AHA deputy national advisor for cybersecurity and risk, explains how hospitals can prepare for and…
AHA Cyber Intel
Why and How to Incorporate Physical Security Risk into Your Enterprise Risk Management
In today’s heightened threat environment, driven by domestic and geopolitical issues, it is more critical than ever for hospitals to prepare for and mitigate…
Headline
Senate holds hearing on health care cybersecurity and patient privacy
In a statement submitted to the Senate Health, Education, Labor and Pensions Committee for a hearing today on health care cybersecurity and patient privacy,…
Headline
AHA podcast: When Cyberattacks Strike — Is Your Board Ready?
Cyberattacks on hospitals are urgent threats to patient safety, care delivery and public trust. In this conversation, Ajay Gupta, board chair of Trinity Health…
Headline
FDA announces software patch available for Contec, Epsimed patient monitors to address vulnerabilities
The Food and Drug Administration yesterday released a safety notice announcing a software patch is available to address cybersecurity vulnerabilities in…