Cybersecurity
Cyber Threat Intelligence, Alerts and Reports
As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.
You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.
Cybersecurity & Risk Advisory
Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.
The Cybersecurity and Infrastructure Security Agency issued guidance for identifying which infrastructure sectors and essential workers needed to maintain services and functions during the COVID-19 pandemic response, including in the health care and public health sector.
The AHA has released a compendium of resources for hospitals and health systems related to cybersecurity threats during the COVID-19 pandemic.
As COVID-19 progresses, cyber criminals seek to exploit health care infrastructure.
A new report released by the World Economic Forum finds that freeing ourselves of passwords will actually make us safer and businesses more efficient.
In this edition of Hacking Healthcare, we tackle three significant document releases that will
affect numerous aspects of the healthcare sector. First, we dive into the final report issued by
the Cyberspace Solarium Commission and recap a handful of recommendations that are likely
to have the…
As the nation’s hospitals and health systems, physicians, caregivers and staff treat and care for patients and our communities, there are others in the world seeking to exploit the COVID-19 pandemic for financial gain. Particularly, cyber criminals.
A malicious website pretending to be the live map for Coronavirus COVID-19 Global Cases by Johns Hopkins University is circulating on the internet waiting for unwitting internet users to visit the website. Visiting the website infects the user with the AZORult trojan, an information stealing…
This document describes a particular problem that is relevant across the healthcare sector. NCCoE cybersecurity experts will address this challenge through collaboration with members of the healthcare sector and vendors of cybersecurity solutions. The resulting reference design will detail an…
Since August 2019, unidentified cyber actors have used a Pulse Secure VPN Vulnerability CVE-2019-11510, which was disclosed this past summer, to exploit notable US entities. In August 2019, cyber actors gained unauthorized access to a US financial entity’s research network using CVE-2019-11510. In…