Cybersecurity
Cyber Threat Intelligence, Alerts and Reports
As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.
You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.
Cybersecurity & Risk Advisory
Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.
The Cybersecurity and Infrastructure Security Agency March 18 released an alert urging U.S. organizations to harden their endpoint management systems following the March 11 cyberattack against Stryker, a U.S.-based medical technology and supply firm. The attack impacted the…
A daily ransomware tracker at TLP Green to increase awareness of the ransomware threat.
H-ISAC TLP Green: Daily Cyber Headlines for March 20, 2026.
A daily ransomware tracker at TLP Green to increase awareness of the ransomware threat.
The AHA continues to closely monitor the significant cyber incident that affected Stryker, a major medical technology, services and supply partner for U.S. hospitals.
A trusted intelligence partner provides this daily ransomware tracker at TLP:GREEN to increase awareness of the ransomware threat. The body of the email contains victims who have been newly added since the last update.
The Health Sector Coordinating Council Cyber Working Group and Health-ISAC (Information Sharing and Analysis Center) will host a joint cybersecurity event July 21-22 for health care and public health entities focusing on cyber incident response and recovery.
H-ISAC TLP Green: Daily Cyber Headlines for
A daily ransomware tracker at TLP Green to increase awareness of the ransomware threat.
On March 11, 2026, Cisco released an advisory for IOS XR software, addressing two high-severity vulnerabilities, CVE-2026-20040 and CVE-2026-20046, which allow authenticated users to gain root and administrative access.