Cybersecurity
Cyber Threat Intelligence, Alerts and Reports
As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.
You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.
Cybersecurity & Risk Advisory
Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.
In this episode, John Riggi, national advisor for cybersecurity and risk with the AHA, is joined by Laura Kreofsky, program director, rural health resiliency at Microsoft. Join us as we discuss a year of collaboration and transformation uncovering the invaluable lessons that are revolutionizing…
H-ISAC TLP Green Daily Cyber Headlines for July 31. 2021.
The FBI, Cybersecurity and Infrastructure Security Agency and international agencies July 29 released a joint advisory on recent tactics by the Scattered Spider cybercriminal group. Scattered Spider threat actors typically engage in data theft for extortion and also use ransomware variants once in…
A daily ransomware tracker at TLP:GREEN to increase awareness of the ransomware threat.
On July 14, 2025, the US announced a new foreign policy stating that it would supply Ukraine with a large amount of advanced weapons through NATO if Russia did not broker a ceasefire deal in the following 50 days.
H-ISAC TLP Green Daily Cyber Headlines for July 28, 2025.
A daily ransomware tracker at TLP:GREEN to increase awareness of the ransomware threat.
Microsoft July 22 released an update on the ongoing cyberattacks to SharePoint servers used within organizations, attributing the incidents to China-based threat actors.
The FBI, Cybersecurity and Infrastructure Security Agency, Department of Health and Human Services and Multi-State Information Sharing and Analysis Center July 23 released a joint advisory detailing malicious activity from Interlock ransomware.
There is an ongoing attack targeting flaws in Microsoft’s SharePoint server software. Microsoft has published guidance on protecting vulnerable systems, and these vulnerabilities only impact on-premises installations of SharePoint.