Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

Joint Cybersecurity Advisory TLP Clear ScatteredSpider

The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint Cybersecurity Advisory (CSA) in response to recent activity by Scattered Spider threat actors against the commercial facilities sectors and subsectors.
Advisory
Advisory

New Ransomware Threat: Rhysida Group Targets Hospitals, Puts Patient Safety at Risk
The FBI, Cybersecurity and Infrastructure Security Agency (CISA), and Multi-State Information Sharing and Analysis Center (MS-ISAC) today issued a warning about Rhysida.
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

Joint Cybersecurity Advisory TLP Clear: #StopRansomware: Rhysida Ransomware
SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders detailing various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics…
Headline
News

FBI, CISA, MS-ISAC warn of Rhysida ransomware threat to hospitals
The FBI, Cybersecurity and Infrastructure Security Agency, and Multi-State Information Sharing and Analysis Center Nov. 15 issued a warning about Rhysida, a ransomware-as-a-service group that has predominantly deployed its ransomware variant since May against the health care, education,…
Headline
News

Agencies release update on Royal ransomware threat
Find out how the Royal ransomware gang is targeting healthcare and other sectors. Learn how to defend your organization's network and prevent data breaches.
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

Joint Cybersecurity Advisory TLP Clear: #StopRansomware: Royal Ransomware Update
SUMMARY Update November 13, 2023 This CSA is being re-released to add new TTPs, IOCs, and information related to Royal Ransomware activity. End of Update
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Informational: TLP WHITE: ACSC and CISA Release Business Continuity in a Box
On November 13, 2023, the Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) and the Cybersecurity and Infrastructure Security Agency (CISA) released communications to bolster organizations' resiliency and stand up critical business functions during or following a cyber…
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - November 13, 2023
H-ISAC TLP Green Daily Cyber Headlines for November 13, 2023.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - November 13, 2023
A daily ransomware tracker at TLP:GREEN for the purpose of increasing ransomware threat awareness.
Headline
News

HHS alerts health care sector to new ransomware threat
The Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center (HC3) this week alerted the sector to a new ransomware threat known as BlackSuit, which may be responsible for an October attack against an organization that provides medical scans and radiology services…
Subscribe to Cybersecurity