HC3 Sector Alert TLP White: Cybersecurity Vulnerabilities of Interest to the Health Sector

May 19, 2020

In recent days, a number of vulnerabilities in common information systems which are relevant to organizations in the healthcare sector have been disclosed to the public. These vulnerabilities are from Microsoft and Adobe as well as highlights from a joint DHS/FBI report on the most impactful vulnerabilities in recent years. The vulnerabilities highlighted in this report have been selected because they meet two criteria. First, they are significant in that they have the potential to allow an attacker to cause significant harm to the target organization. Second, they are likely to be included in the enterprise infrastructure of a healthcare organization. Further details on these vulnerabilities can be found below, along with their potential effects if exploited as well as patches.

Related Resources

Webinar Recordings
Public
The U.S. Department of Health and Human Services’ (HHS) Health Sector Cybersecurity Coordination Center (HC3) invites you to join its monthly cybersecurity…
Guides/Reports
Working from Home during COVID-19 Pandemic During the COVID-19 pandemic, many physicians are working from home, using their personal computers and mobile…
Guides/Reports
Public
Mozilla Patches Critical Vulnerabilities in Firefox, Firefox ESR 04/03/2020 04:45 PM EDT Original release date: April 3, 2020 Mozilla has released security…
Special Bulletin
Public
A recent campaign of cyberattacks from a foreign threat actor targeted healthcare organizations and specifically exploited Citrix and Zoho technologies used…
Advisory
Public
The Centers for Medicare & Medicaid Services will prioritize and conduct only certain surveys during the COVID-19 national emergency’s three-week…
Action Alert
Public
Leaders from the Senate, House and Administration continue to negotiate a third spending package related to the novel coronavirus (COVID-19). Senate Majority…