Cybersecurity

Cyber Threat Intelligence, Alerts and Reports
As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.
You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.
Cybersecurity & Risk Advisory
Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.
The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the broader U.S. Government are providing this technical guidance to advise IT security professionals at public and private sector organizations to place an increased priority on patching the…
False and misleading information related to the coronavirus (COVID-19) are a significant challenge. This CISA Insight provides an overview of coronavirus disinformation and steps that can be taken to reduce the risk of sharing inaccurate information with your friends and family.
This edition of Hacking Healthcare includes an examination of how COVID-19 led the United Kingdom’s (UK) National Health Service (NHS) to give the country’s intelligence and security agency emergency powers over its networks.
HC3 Threat Brief on Quantitative Risk Management in Healthcare Cybersecurity.
Adversaries use known vulnerabilities and phishing attacks to compromise the security of organizations. The Cybersecurity and Infrastructure Security Agency (CISA) offers several scanning and testing services to help organizations reduce their exposure to threats by taking a proactive approach to…
Sophos XG firewall and Sophos Firewall Operating System was found to be vulnerable to SQL injection (SQLi), and was recently exploited by Asnarök Malware.
Unknown cybercriminals have targeted more than 1,000 US and international businesses with Ryuk ransomware since approximately August 2018.
The Department of Homeland Security and the Cybersecurity and Infrastructure Security Agency have updated their telework guidance to include new guidance on telework best practices, videoconferencing tips, guidance for securing videoconferencing, and specific cybersecurity recommendations for…
As the nation’s risk advisor, CISA brings our partners in industry and the full power of the federal government together to improve American cyber and infrastructure security. The resources below are provided to assist organizations and teleworkers to be secure when working remotely. …
As the authority for securing telework, the Cybersecurity and Infrastructure Security Agency (CISA) established this product line with cybersecurity principles and practices that individuals and organizations can follow to video conference more securely. Although CISA is providing this general risk…