Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Vulnerability Bulletin: Health-ISAC and Microsoft Patch Tuesday Podcast - December 2021
Health-ISAC and Microsoft have partnered together to deliver a new medium to discuss notable vulnerabilities patched in the recent Patch Tuesday update.
H-ISAC: Green Reports
H-ISAC: Green Reports

Health-ISAC TLP Green Daily Cyber Headlines - December 15, 2021
Today’s Headlines: Leading Story Microsoft December 2021 Patch Tuesday Fixes 6 Zero-Days, 67 Flaws Data Breaches & Data Leaks Nothing to Report Cyber Crimes & Incidents Cyberattack on BHG Opioid Treatment Network Disrupts Patient Care Vulnerabilities & Exploits
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Informational Ransomware Data Leak Sites Report, Dec. 15, 2021
A valued colleague is providing this daily ransomware tracker as TLP:GREEN  for purposes of increasing ransomware threat awareness. The body of the email contains newly added victims since the last update.
Headline
News

CISA alerts public to second severe Apache Log4j vulnerability
Apache has released a security update to address a second severe vulnerability affecting its Log4j software library, which a remote attacker could exploit to cause a denial-of-service condition, the Cybersecurity and Infrastructure Security Agency announced.
Advancing Health Podcast
Content

Healthcare Under Stress and Under Cyber Attack: The Correlation to Excess Deaths
In this podcast, John Riggi, highly decorated veteran of the FBI and Senior Advisor for Cybersecurity and Risk at the American Hospital Association talks to two leading experts and colleagues in the field of cybersecurity from the Cybersecurity and Infrastructure Agency (CISA) / U.S. Department of…
Headline
News

CISA launches webpage, repository on Apache Log4j vulnerability

The Cybersecurity and Infrastructure Security Agency has created a webpage to provide the latest public information and vendor-supplied advisories on a critical remote code execution vulnerability affecting Apache Log4j software library versions 2.0-beta9 to 2.14.1.
Headline
News

Kronos ransomware attack impacting hospitals and health systems

A ransomware attack has impacted several Ultimate Kronos Group services that hospitals and other organizations use to manage their employees and payrolls, the HR management company has confirmed.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report December 14, 2021
A valued colleague is providing this daily ransomware tracker as TLP:GREEN for purposes of increasing ransomware threat awareness.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - December 14, 2021
H-ISAC TLP Green Daily Cyber Headlines - December 14, 2021
Headline
News

HHS urges health sector to protect against severe Java vulnerability
Health care organizations should survey their information infrastructure to ensure they are not running vulnerable versions of the Apache Log4j Java library, upgrade any vulnerable systems and identify possible exploitation, the Department of Health and Human Services’ Health Sector Cybersecurity…
Subscribe to Cybersecurity