Cybersecurity
Cyber Threat Intelligence, Alerts and Reports
As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.
You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.
Cybersecurity & Risk Advisory
Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.
This report highlights findings from research conducted by the FBI’s Behavioral Analysis Unit 3 (BAU-3) that identified key indicators of child torture.
On August 12, 2025, FortiGuard Labs published an advisory for a flaw in FortiWeb tracked as CVE-2025-52970.
H-ISAC TLP Green Daily Cyber Headlines for August 18, 2025.
A daily ransomware tracker at TLP:GREEN to increase awareness of the ransomware threat.
On August 14, 2025, Cisco disclosed a critical remote code execution (RCE) vulnerability.
This week, Health-ISAC®'s Hacking Healthcare® examines the recent publication of a new version of the United Kingdom’s (U.K.) National Cyber Security Centre (NCSC) developed Cyber Assessment Framework (CAF).
H-ISAC TLP Green Daily Cyber Headlines for August 15, 2025.
A daily ransomware tracker at TLP:GREEN to increase awareness of the ransomware threat.
The Cybersecurity and Infrastructure Security Agency, Environmental Protection Agency, National Security Agency, FBI and international agencies Aug. 13 released guidance for operational technology owners and operators to create and manage an OT asset inventory.
On August 13, 2025, HORIZON3.ai security researchers published an Attack Blog regarding two high-severity vulnerabilities, CVE-2025-8355 and CVE-2025-8356, affecting Xerox FreeFlow Core version 8.0.4.