Cybersecurity
Cyber Threat Intelligence, Alerts and Reports
As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.
You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.
Cybersecurity & Risk Advisory
Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.
Agenda
Recent Ransomware Activity
Overview of Conti Ransomware
Conti vs. Healthcare
FBI Alert on Conti
Example of a Conti Infection
Real-world Conti Attacks
Conti Mapper to MITRE ATT&CK
Conti Mitigation Practices
References
Questions
View the entire report below.
Microsoft has released out-of-band security updates to address a remote code execution vulnerability — known as PrintNightmare (CVE-2021-34527) — in the Windows Print spooler service. The Computer Emergency Response Team Coordination Center (CERT/CC), part of the Software Engineering Institute at…
Microsoft has released out-of-band security updates to address a remote code execution (RCE) vulnerability — known as PrintNightmare (CVE-2021-34527) — in the Windows Print spooler service.
Hospitals and health systems have frequently been the target of high-impact ransomware attacks. In this podcast, John Riggi, AHA senior advisor for cybersecurity and risk advisory services, speaks with John Delano, regional chief information officer at AdventHealth, and Michael Hamilton, chief…
Microsoft has released out-of-band security updates to address PrintNightmare, tracked as CVE-2021-34527, a remote code execution (RCE) vulnerability in the Windows Print Spooler service
H-ISAC TLP Green Daily Cyber Headlines for July 7, 2021.
The Headlines, the “Good Stuff”, US Snapshots, US Vaccinations, US Variant Cases, Highlights, as well as key Statistics, Vaccine and Treatment information, US Restrictions and the Back to Normal Index related to the novel coronavirus pandemic.
On July 1, 2021, the National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and the UK’s National Cyber Security Centre (NCSC) released a Joint Cybersecurity Advisory regarding Russian General Staff Main Intelligence…
Since at least mid-2019 through early 2021, Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS), military unit 26165, used a Kubernetes® cluster to conduct widespread, distributed, and anonymized brute force access attempts against hundreds of…
On July 1, 2021, the Health-ISAC Threat Intelligence Committee (TIC) evaluated the current Cyber Threat Level and collectively chose to maintain the Threat Level at Blue (Guarded).