Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

TLP WHite: NSA | APT5: Citrix ADC Threat Hunting Guidance - December 2022

Dec 13, 2022
APT5 has demonstrated capabilities against Citrix® Application Delivery Controller™ (ADC™) deployments (“Citrix ADCs”).
Issue Landing Page
Issue Landing Page

Cybersecurity & Risk Advisory Service

Sep 16, 2021
AHA can help hospitals and health systems prepare for and mitigate cyber threats with John Riggi, a recognized expert, as a powerful resource.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Multiple Ransomware Strains Targeting VMware ESXi Servers - CVE-2021-21974

Feb 6, 2023
On February 3, 2023, the French Computer Emergency Response Team (CERT-FR) identified a campaign targeting CVE-2021-21974, a security flaw impacting VMWare ESXi servers to deploy a new ransomware strain, identified as ESXiArgs ransomware. CERT-FR reported several compromises of VMWare ESXi…
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

HC3 TLP Clear Monthly Cybersecurity Vulnerability Bulletin January Vulnerabilities of Interest to the Health Sector

Feb 6, 2023
n January 2023, vulnerabilities to the health sector have been released that require attention. This includes the monthly Patch Tuesday vulnerabilities released by several vendors on the second Tuesday of each month, along with mitigation steps and patches.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Threat Bulletin: Pro-Russian Hacktivist DDoS Campaign Targeting Healthcare

Feb 6, 2023
On January 27, pro-Russian hacktivists operating on cybercriminal forums threatened to demolish attack the networks of medical institutions in the United States, United Kingdom, and abroad.  The threats were purported to be a response to new aid packages providing security assistance for Ukraine.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - February 6, 2023

Feb 6, 2023
A daily ransomware tracker as TLP:GREEN for purposes of increasing ransomware threat awareness.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - February 6, 2023

Feb 6, 2023
Today’s Headlines:   
H-ISAC: Green Reports
H-ISAC: Green Reports

Daily Alert Report - February 03, 2023

Feb 4, 2023
Alerts published on February 4, 2023.
Perspective
News

Keeping Hospitals and Patients Safe against Cyberattacks

Feb 3, 2023
Cyberattacks are increasing globally and in the U.S., with health care organizations, especially hospitals and health systems, being prime targets.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - February 3, 2023

Feb 3, 2023
A daily ransomware tracker as TLP:GREEN for purposes of increasing ransomware threat awareness.
Subscribe to Cybersecurity