Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green: Daily Cyber Headlines May 11, 2021
Today's Headlines Leading Story US Declares State of Emergency After Ransomware; Colonial Pipeline Aims to Restore Operations by End of the Week Data Breaches & Data Leaks Nothing to Report Cyber Crimes & Incidents City of Tulsa, Oklahoma Suffers Ransomware Attack…
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White: Hacking Healthcare, May 11, 2021
This week, Hacking Healthcare begins by examining a mistake that affected roughly 25% of the population of Wyoming and makes the case that organizations should ensure their security and privacy processes look to minimize the risk of employee-caused exposures. Next, we briefly cover the United…
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White: CISA Releases Joint NCSC-FBI-NSA Cybersecurity Advisory on Russian SVR Activity
The United States Cybersecurity and Infrastructure Security Agency (CISA) has posted the Current Activity "Joint NCSC-CISA-FBI-NSA Cybersecurity Advisory on Russian SVR Activity".
Other Cybersecurity Reports
Other Cybersecurity Reports

May 2021: Health-ISAC Cyber Threat Level remains Blue (GUARDED)
On May 6, 2021, the Health-ISAC Threat Intelligence Committee (TIC) evaluated the current Cyber Threat Level and collectively chose to maintain the Threat Level at Blue (GUARDED).

H-ISAC TLP Green Coronavirus Daily Update, May 10, 2021
Headlines
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green Coronavirus Daily Update, May 7, 2021
Headlines
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green Daily Cyber Headlines, May 10, 2021
Today's Headlines Leading Story Colonial Pipeline Cyberattack Shuts Down Pipeline That Supplies 45% of East Coast's Fuel Data Breaches & Data Leaks SolarWinds Finds Evidence that Hackers Broke into Email Accounts, Accessed Employee Data Cyber Crimes and Incidents
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green Daily Cyber Headlines, May 7, 2021
Today's Headlines Leading Story CaptureRx Data Breach Impacts Healthcare Providers Data Breaches & Data Leaks Misconfigured Database Exposes 200K Fake Amazon Reviewers Cyber Crimes and Incidents Cuba Ransomware Partners with Hancitor for Spam-Fueled Attacks Vulnerabilities…
Headline
News

Field alerted to new ransomware threat, latest Russian cyber tactics
The FBI released an alert on the ransomware variant Darkside, which this month infected a critical infrastructure company in the United States. The ransomware-as-a-service variant has affected various sectors since October 2020, including health care.
FBI TLP Alert
FBI TLP Alert

FBI TLP:Green Indicators of Compromise Associated with Darkside Ransomware
Darkside is a ransomware-as-a-service (RaaS) variant, in which criminal affiliates conduct the attacks and the proceeds are shared with the ransomware developer(s). Darkside has impacted numerous organizations across various sectors including manufacturing, legal, insurance, healthcare, and energy.
Subscribe to Cybersecurity