H-ISAC TLP White Hacking Healthcare - January 13, 2022

This week, Hacking Healthcare begins by breaking down the Federal Trade Commission’s warning that it may take action against companies that don’t remediate the Log4j vulnerability in a timely manner. Next, we jump to a new phishing technique that abuses Google Docs to slip under automated email filters and manual review alike. Finally, we try to provide some context around the ongoing U.S.-Russia talks and discuss how raised diplomatic tensions may stoke offensive cyber operations against critical infrastructure. Welcome back to Hacking Healthcare.

In this edition:

  • The Federal Trade Commission Sends Log4j Warning
  • Phishers Take Advantage of Google Docs
  • U.S.-Russia Talks Over Ukraine Have Cyber Ramifications

View the detailed report below.

For help with Cybersecurity and Risk Advisory Services exclusively for AHA members, contact:

John Riggi

National Advisor for Cybersecurity and Risk, AHA

jriggi@aha.org

(O) +1 202 626 2272

More on John Riggi
Learn more about AHA's Cybersecurity and Risk Advisory Services

Key Resources

Related Resources

Special Bulletin
UPDATE: AHA and Health-ISAC Threat Advisory: FBI Advises No Specific Credible Threat Targeting Hospitals
Public
Special Bulletin
AHA and Health-ISAC Bulletin on Threat to Hospitals
Member
AHA Center for Health Innovation Market Scan
Rural Hospitals Move to Enhance Cybersecurity
Advancing Health Podcast
Critical Condition: Cybersecurity in Rural Hospitals with Microsoft Part 2
Advancing Health Podcast
Critical Condition: Cybersecurity in Rural Hospitals with Microsoft Part 1
Public
Guides/Reports
Change Healthcare Cyberattack Underscores Urgent Need to Strengthen Cyber Preparedness for Individual Health Care Organizations and as a Field
Public