Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

Headline
News

Fitch: Health systems face growing financial pressure from cyberattacks
U.S. hospitals and health systems face growing financial pressure from cyberattacks, credit rating agency Fitch Ratings reported.  
H-ISAC: White Reports
H-ISAC: White Reports

Criminal Actors Targeting Healthcare Provider Payer Networks via Facsimile with Real-time Patient Information

The FBI in coordination with the Office of Private Sector (OPS) prepared the attached Liaison Information Report (LIR) to inform the healthcare sector about phishing attempts, via facsimile, requesting physician authorization for fraudulent healthcare services and devices.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Hacking Healthcare - July 20, 2021
This edition of Hacking Healthcare includes by providing a brief update on REvil and its apparent disappearance.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Vulnerability: New Windows 10 Elevation of Privilege Vulnerability Discovered July 22, 2021
A new Windows 10 and 11 local elevation of privilege vulnerability has been discovered that enables users with low privileges to access sensitive Registry database files.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green: Ransomware Data Leak Sites Report - July 22, 2021
A trusted intelligence partner is providing this daily ransomware tracker at TLP:GREEN for purposes of increasing ransomware threat awareness.
HC3 Sector Alert
HC3 Sector Alert

HC3 TLP White Alert – Exploitation of Pulse Connect Secure Vulnerabilities
Executive Summary Since June 2020, unidentified threat actors have targeted vulnerabilities in certain Ivanti Pulse Connect Secure products. Threat actors gained initial access through the targeting of the following vulnerabilities: CVE-2019-11510, CVE-2020-8260, CVE-2020-8243, and CVE-2021-…
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green: Daily Cyber Headlines - July 22, 2021
H-ISAC TLP Green: Daily Cyber Headlines for July 22, 2021
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green: Coronavirus Daily Update - July 22, 2021
The major Headlines, the “Good Stuff”, US Snapshots, US Vaccinations, US Variant Cases, Highlights, as well as key Statistics, Vaccine and Treatment information, US Restrictions and the Back to Normal Index related to the novel coronavirus pandemic.
Advancing Health Podcast
Content

Counterintelligence and Security Leader Discusses Nation-State Cyber Threats to Hospitals, U.S. Health Care System
On this AHA Advancing Health podcast, John Riggi, AHA senior advisor for cybersecurity and risk, speaks with his former FBI colleague Mike Orlando, acting director of the National Counterintelligence and Security Center. During their discussion, Orlando and Riggi warn and advise America’s hospitals…
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green Daily Cyber Headlines - July 21, 2021
H-ISAC TLP Green Daily Cyber Headlines for July 21, 2021
Subscribe to Cybersecurity