Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

HC3 TLP Clear Analyst Note: HC3’s Top 10 Most Active Ransomware Groups

This report provides high-level insight into the top ten ransomware groups HC3 has seen targeting the healthcare sector.
Headline
News

Cyber schemers continue to target hospital IT help desks 
The AHA has been made aware of a validated IT help desk social engineering scheme that uses the stolen identity of revenue cycle employees or employees in other sensitive financial roles.
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

HC3 TLP Clear Analyst Note: Social Engineering Attacks Targeting IT Help Desks in the Health Sector
This report provides high-level insight into the top ten ransomware groups HC3 has seen targeting the healthcare sector.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - April 3, 2024
H-ISAC TLP Green Daily Cyber Headlines for April 3, 2024.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - April 3, 2024
A daily ransomware tracker at TLP:GREEN for the purpose of increasing ransomware threat awareness.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - April 2, 2024
A daily ransomware tracker at TLP:GREEN for the purpose of increasing ransomware threat awareness.
Other Resources
Other Resources

RWJ Barnabas Improves IoT Security Without Care Disruption
RWJB wanted a centralized inventory, and device security across their entire multi-site network of healthcare IoT and connected medical devices.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Threat Bulletin: Cisco Warns of Password Spray Attacks Against VPN Services on Cisco Secure Firewall Devices

On March 26, 2024, Cisco released an advisory stating that its threat intelligence team, Cisco Talos, has observed a concerning uptick in password spray attacks against Remote Access Virtual Private Network (RAVPN) services on devices that use Cisco Secure Firewall.
Headline
News

AHA podcast: Cyberthreats and assessing third-party risk, part two
In this second of a two-part conversation, Providence’s Adam Zoller, chief information security officer, and Katie Adams, cybersecurity director of clinical technology services, discuss the potential cyberthreats posed by third-party medical devices, and strategies to keep third-parties open and…
Advancing Health Podcast
Content

Part Two: Cyberthreats and Assessing Third-Party Risk with Providence
In this second of a two-part conversation, hosted by the AHA's National Advisor for Cybersecurity and Risk John Riggi, Providence’s Adam Zoller, chief information security officer, and Katie Adams, cybersecurity director of clinical technology services, discuss the potential cyberthreats posed by…
Subscribe to Cybersecurity