Cybersecurity
Cyber Threat Intelligence, Alerts and Reports
As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.
You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.
Cybersecurity & Risk Advisory
Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.
.webreplay{
border: solid 2px #777;
padding: 15px 5px;
margin: 0 0 10px 15px;
}
@media (min-width:360px){
.webreplay{
min-width: 290px;
float: right;
}
}
On-demand Webinar
MktoForms2.loadForm("//sponsors.aha.org", "710-ZLL-651", 1053)
Picture Archiving Communication Systems (PACS) are widely used by hospitals, research institutions, clinics and small healthcare practices for sharing patient data and medical images. In 2019, researchers disclosed a vulnerability in these systems that if exploited could potentially expose patient…
The Cybersecurity and Infrastructure Security Agency and Health Sector Cybersecurity Coordination Center are alerting organizations to a global cyberattack using a hidden back door or “trojanized” legitimate updates to the SolarWinds Orion performance monitoring platform to access public and…
On December 13, 2020, FireEye and SolarWinds released security advisories detailing a highly-skilled and highly-targeted, manual supply chain attack on the SolarWinds Orion Platform network management system that leverages software updates to deploy a backdoor to victim organizations.
A highly sophisticated threat actor has stolen tools used by cybersecurity company FireEye to evaluate the security posture of enterprise systems, which unauthorized third-party users could abuse to take control of targeted systems, the Cybersecurity and Infrastructure Security Agency announced.
The Cybersecurity and Infrastructure Security Agency alerted organizations to a global phishing and spearphishing campaign targeting the COVID-19 vaccine cold chain, the part of the supply chain used to store and transport a vaccine at safe temperatures.
Disinformation; also called “active measures” when referring to its use by a state for national security and power projection purposes
The difference between disinformation and misinformation is intent
Not all false stories are organized campaigns pushed by a nation-state
Often…
IBM X-Force has released a report on malicious cyber actors targeting the COVID-19 cold chain—an integral part of delivering and storing a vaccine at safe temperatures. Impersonating a biomedical company, cyber actors are sending phishing and spear phishing emails to executives and global…
John Riggi, AHA senior advisor for cybersecurity and risk, testimony before the Senate Homeland Security and Governmental Affairs Committee on defending communities from cyber threats during the COVID-19 pandemic.
The Senate Homeland Security and Governmental Affairs Committee held a hearing on defending communities from cyber threats during the COVID-19 pandemic.