Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA鈥檚 commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA鈥檚 National Advisor for Cybersecurity and Risk.

Learn More

Headline
News

Iranian cyber group targeting Israeli-made programmable logic controllers
Health care and other organizations that operate Unitronics Programmable Logic Controllers should protect the devices from potential compromise through default passwords, U.S. and Israeli agencies announced Dec. 2.
Headline
News

Russian national pleads guilty to role in ransomware attacks
A Russian national Dec. 4 pleaded guilty to his role in developing and deploying a suite of malware tools known as Trickbot, used to launch ransomware attacks against American hospitals and other businesses, the Department of Justice announced.
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

Joint Cybersecurity Advisory TLP Clear: IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors
SUMMARY The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Environmental Protection Agency (EPA), and the Israel National Cyber Directorate (INCD)鈥攈ereafter referred to as "the authoring agencies"鈥攁re disseminating鈥
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

Urgent: Hospital Action Needed to Protect Against 鈥楥itrix Bleed鈥 Threat
Hospitals and other critical infrastructure remain prime targets for cyberthreat that enables bypassing security measures to steal data and execute ransomware attacks
Headline
News

HHS-HC3 calls for immediate hospital action to protect against 鈥楥itrix Bleed鈥 vulnerability and ransomware threat
The Department of Health and Human Services鈥 Health Sector Cybersecurity Coordination Center is urging hospitals and other critical infrastructure to take immediate action to patch and harden network systems to protect against a significant ransomware threat, the 鈥淐itrix Bleed鈥 vulnerability.
Headline
News

Okta alerts customer support system users to data breach
Cyber actors attacking the Okta Help Center customer support management system in October downloaded a report containing the names and email addresses of all system users, and could use this information to target these customers via phishing and social engineering attacks, the company announced.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP GREEN: Daily Cyber Headlines - November 30, 2023
Daily Cyber Headlines for November 30, 2023.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - November 30, 2023
A daily ransomware tracker for the purpose of increasing ransomware threat awareness.
Headline
News

U.S., global partners release guidelines for secure AI system development
The U.S. Cybersecurity and Infrastructure Security Agency, U.K. National Cyber Security Centre and other global partners this week released recommended guidelines or secure artificial intelligence design, development, deployment and use.
Standards/Guidelines
Standards/Guidelines

Guidelines for Secure AI System Development
This document recommends guidelines for providers of any systems that use artificial intelligence (AI), whether those systems have been created from scratch or built on top of tools and services provided by others. Implementing these guidelines will help providers build AI systems that function as鈥
Subscribe to Cybersecurity