Cybersecurity
Cyber Threat Intelligence, Alerts and Reports
As part of the AHA鈥檚 commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.
You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.
Cybersecurity & Risk Advisory
Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA鈥檚 National Advisor for Cybersecurity and Risk.
H-ISAC TLP Green Daily Cyber Headlines - February 0, 2023
A daily ransomware tracker as TLP:GREEN for purposes of increasing ransomware threat awareness.
Alerts published on February 08, 2023.
HSCC shared their first HSCC CWG publication of 2023 - a white paper titled: 鈥淗ealth Industry Cybersecurity-Artificial Intelligence Machine Learning (HIC-AIM)鈥 鈥 an overview and discussion of 9 cybersecurity considerations for the implementation of A.I. in a clinical and enterprise environment.
Hear how Children鈥檚 National Hospital in Washington, D.C., developed a system allowing hospital staff members to protect patient safety in the event of a broad-based ransomware or malware attack. LISTEN NOW
A new white paper from the Healthcare and Public Health Sector Coordinating Council (HSCC), a public-private partnership to mitigate risks to the sector, outlines nine cybersecurity concerns for artificial intelligence use in the clinical and enterprise environment and approaches to address them
The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are releasing this joint Cybersecurity Advisory (CSA) in response to the ongoing ransomware campaign, known as 鈥淓SXiArgs.
Children鈥檚 National Hospital in Washington, D.C., has developed a system-wide 鈥渙ff鈥 switch that staff can activate if it is clear that the hospital has come under a broad-based ransomware or malware attack.
On February 3, 2023, the French Computer Emergency Response Team (CERT-FR) identified a campaign targeting CVE-2021-21974, a security flaw impacting VMWare ESXi servers to deploy a new ransomware strain, identified as ESXiArgs ransomware. CERT-FR reported several compromises of VMWare ESXi鈥
n January 2023, vulnerabilities to the health sector have been released that require attention. This includes the monthly Patch Tuesday vulnerabilities released by several vendors on the second Tuesday of each month, along with mitigation steps and patches.