Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA鈥檚 commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA鈥檚 National Advisor for Cybersecurity and Risk.

Learn More

H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - February 19, 2025
A daily ransomware tracker at TLP:GREEN for the purpose of increasing ransomware threat awareness.
H-ISAC: White Reports
H-ISAC: White Reports

SonicWall SonicOS Flaw Confirmed to be Exploited In-the-Wild After PoC Release

The high-severity SSLVPN authentication bypass flaw affecting SonicWall firewalls running vulnerable SonicOS versions is actively being exploited in-the-wild.
Headline
News

DOJ announces charges for affiliates of Phobos ransomware group

The Department of Justice Feb. 10 announced charges for Roman Berezhnoy and Egor Nikolaevich Glebov, Russian nationals alleged to be leaders of a ransomware group operating under the names 鈥8Base鈥 and 鈥淎ffiliate 2803,鈥 among others.
Headline
News

AHA discusses innovation, cybersecurity at digital health conference
The AHA participated at ViVE, a health care conference in Nashville focusing on digital health technology. Chris DeRienzo, M.D., AHA senior vice president and chief physician executive, led a session on using artificial intelligence to help tackle financial, operational and logistical barriers to鈥
AHA Cyber Intel
News

Resources to Protect America鈥檚 Rural Hospitals from Cyberthreats
John Riggi, AHA鈥檚 national advisor for cybersecurity and risk, outlines available cybersecurity resources vital to protecting rural hospitals from cyberthreats.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - February 17, 2025
H-ISAC TLP Green Daily Cyber Headlines for February 17, 2025.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - February 17, 2025
A daily ransomware tracker at TLP:GREEN for the purpose of increasing ransomware threat awareness.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Threat Bulletin Storm-2372 Conducts Device Code Phishing Campaign

The Microsoft Threat Intelligence Center has identified an active device code phishing campaign conducted by a group known as Storm-2372, which has been operational since August 2024.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - February 14, 2025
H-ISAC TLP Green Daily Cyber Headlines for February 14, 2025.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - February 24, 2025
A daily ransomware tracker at TLP:GREEN for the purpose of increasing ransomware threat awareness
Subscribe to Cybersecurity