����������

Cyberattacks are increasing and expected to reach record numbers in the U.S. by the end of 2024.

A joint advisory issued Oct. 16 by the FBI, the Cybersecurity and Infrastructure Security Agency, the National Security Agency and international agencies warn of a threat of Iranian cyber actors using brute force and other techniques to compromise organizations in health care and other critical infrastructure sectors.

The FBI, along with the National Security Agency, Cyber National Mission Force and United Kingdom’s National Cyber Security Centre, today released a joint agency advisory on cyber operations by the Russian Federation’s Foreign Intelligence Service (SVR), also known as APT29, Midnight Blizzard, Cozy Bear, and the Dukes, targeting U.S. and global entities.

The Department of Justice last week announced a new strategic approach to combating cybercrime which involves "using all tools” to disrupt cybercriminals and hold them accountable, as well as promoting cybersecurity through public education efforts.

John Riggi, AHA’s national advisor for cybersecurity and risk, provides insight into 2024’s health care cybersecurity challenges to help hospitals prepare for the next big cyberattack.

The never-ending barrage of ransomware and cyberattacks against the health care sector has only strengthened the resolve of hospitals and health systems to reinforce their defenses and protect safe access to care for patients and communities.

The FBI, National Security Agency and Cyber National Mission Force last week issued a joint advisory about recent actions of China-linked cyber actors compromising thousands of small or home office routers, firewalls, network-attached storage and other internet devices to create a botnet for malicious activity.

The Health Information Sharing and Analysis Center last week announced that Veeam, a software company that provides data protection, backup and disaster recovery solutions, issued a

The Cybersecurity and Infrastructure Security Agency Aug. 21 published guidance providing best practices for event logging to mitigate cyberthreats.

The AHA has released five new tip sheets designed to fortify crisis leadership competencies during emergency events such as cyberattacks, natural disasters and mass violence incidents.

The FBI, Cybersecurity and Infrastructure Agency and the Department of Defense Cyber Crime Center Aug. 29 issued a joint advisory to warn of Iranian-based cyber actors leveraging unauthorized network access to U.S. organizations, including health care organizations, to facilitate, execute and profit from future ransomware attacks by apparently Russian-affiliated ransomware gangs.

Cybersecurity experts from the AHA and Microsoft discuss the urgent need to build a cyber-strong workforce, particularly in rural hospitals and health systems, and how methods such as re-skilling can sustain permanent cyber readiness.

AHA Aug. 23 has named James “Scott” Gee as deputy national advisor for cybersecurity and risk.

The Department of Health and Human Services Health Sector Cybersecurity Coordination Center (HC3) this week released an advisory about Everest, a ransomware-as-a-service group increasingly targeting the health care field.

In his latest AHA Cyber Intel blog, John Riggi, AHA national advisor for cybersecurity and risk, explains why cybercriminals are shifting from directly targeting hospitals to hitting the third-party technology and service providers critical to supporting hospitals’ clinical care.

The Cybersecurity and Infrastructure Security Agency and FBI Aug. 8 released guidance on secure by design software products which includes resources to assess product security maturity and whether a manufacturer follows secure by design principles.

It seems like barely a week goes by without a new cyberattack that affects health care providers.

CISAand FBI today issued an updated advisory on the BlackSuit ransomware group, providing information on historically observed tactics, techniques, and procedures and indicators of compromise associated with the group. BlackSuit's cyberattacks have impacted health care and other industries.

Cybercriminals are ramping up attacks on health care systems throughout the United States, with a majority of these crimes originating from international, state-sponsored actors.

John Riggi, AHA national advisor for cybersecurity and risk, explains why cybercriminals are shifting from directly targeting hospitals to hitting the third-party technology and service providers critical to supporting hospitals’ clinical care. He highlights four key strategies to help hospitals and health systems strengthen their third-party risk management program against the debilitating effects of the next, inevitable Change Healthcare-like cyberattack.