Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

Issue Landing Page
Issue Landing Page

Cybersecurity & Risk Advisory Service
AHA can help hospitals and health systems prepare for and mitigate cyber threats with John Riggi, a recognized expert, as a powerful resource.
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

TLP White: NSA | APT5: Citrix ADC Threat Hunting Guidance - December 2022
APT5 has demonstrated capabilities against Citrix® Application Delivery Controller™ (ADC™) deployments (“Citrix ADCs”).
Advisory
Advisory

AHA and Health-ISAC Joint Threat Bulletin: Indicators of Compromise Related to Recent Health Care Ransomware Attack
The American Hospital Association (AHA) and Health-ISAC (Health Information Sharing and Analysis Center) today are releasing known Indicators of Compromise (IOCs), or malware signatures, related to a recent attack by the notorious ransomware group Daixin.
Headline
News

NSA report includes recommendations for OT device security

The National Security Agency April 23 released a report on operational technology systems that includes recommendations for security policies and technical requirements for devices installed in national security systems.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green: Ransomware Data Leak Sites Report - April 28, 2025
A daily ransomware tracker at TLP:GREEN for the purpose of increasing ransomware threat awareness.

H-ISAC TLP Green Daily Cyber Headlines - April 28, 2025
H-ISAC TLP Green Daily Cyber Headlines for April 28, 2025.
Chairperson's File
News

Chair File: Leadership Dialogue — Cybersecurity in Health Care with John Riggi, AHA’s National Advisor for Cybersecurity and Risk
I welcomed John Riggi, AHA’s National Advisor for Cybersecurity and Risk, to our Leadership Dialogue to have a conversation about planning for and navigating cyber and physical threats.
Advancing Health Podcast
Content

Leadership Dialogue Series: Cybersecurity and the Fight to Safeguard Health Care
In this Leadership Dialogue conversation, Tina Freese Decker, president and CEO of Corewell Health and 2025 AHA board chair, talks with John Riggi, national advisor for cybersecurity and risk at the American Hospital Association.
Leadership Rounds
Leadership Rounds

Leadership Dialogue
Join AHA’s Board Chair Tina Freese Decker for Leadership Dialogue as she discusses key issues with hospitals colleagues from across the country. Watch the video and listen to the podcasts. New videos will post the last Monday of each month.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Gree Daily Cyber Headlines - April 25, 2025
Today’s Headlines:Leading Story Critical Commvault Command Center Flaw Enables Attackers to Execute Code RemotelyData Breaches & Data Leaks  Cyberattacks Hit Health Sector Firms, Exposing Data of Over 236,000 PeopleCyber Crimes & Incidents 
Subscribe to Cybersecurity