Public
American Hospital Association content that is available to the public and all website users.
Health-ISAC and Microsoft have partnered together to deliver a new medium to discuss notable vulnerabilities patched in the recent Patch Tuesday update.
Responding to a recent request for input from the field, the AHA yesterday urged the Center for Medicare and Medicaid Innovation to balance the risk and reward in its alternative payment models “in a way that reflects the significant investments required to launch and maintain APM participation.”
The Centers for Medicare & Medicaid Services (CMS) in a Dec. 10 letter to state Medicaid directors provided state agencies with guidance pertaining to two provisions of the Consolidated Appropriations Act (CAA) of 2021. Section 202 of the CAA specified new state reporting requirements for non-…
In this podcast, John Riggi, highly decorated veteran of the FBI and Senior Advisor for Cybersecurity and Risk at the American Hospital Association talks to two leading experts and colleagues in the field of cybersecurity from the Cybersecurity and Infrastructure Agency (CISA) / U.S. Department of…
The Department of Health and Human Services (HHS) today announced that later this week it will distribute $9 billion of the $17 billion in Provider Relief Fund (PRF) “Phase 4” payments to providers who have experienced revenue losses and expenses related to the COVID-19 pandemic.
Since the onset of the pandemic, we have seen an increase in stress anxiety. depression, substance use and elevated numbers of suicidal ideation.
On December 13, 2021, Kronos reported a ransomware event impacting Kronos Private Cloud (KPC) instances.
On December 9, 2021, the Cybersecurity and Infrastructure Security Agency (CISA) released an Industrial Controls Systems Medical Advisory (ICSMA) detailing a vulnerability in multiple Hillrom Welch Allyn cardiology products.
The Health-ISAC Threat Operations Center (TOC) has been closely tracking ongoing developments regarding the weaponization and mitigation of CVE-2021-44228 in the logging library known as Log4j.
Proof-of-concept exploit code for a critical zero-day vulnerability, designated CVE-2021-44228, in the Apache Log4j Java-based logging library has been released publicly, exposing enterprises and services to remote code execution (RCE) attacks by attackers.