Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA鈥檚 commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA鈥檚 National Advisor for Cybersecurity and Risk.

Learn More

Headline
News

Agencies warn of Ghost ransomware activity
A joint advisory released Feb. 19 by the FBI, Cybersecurity and Infrastructure Security Agency and the Multi-State Information Sharing and Analysis Center warns of cybercriminal activity by the Ghost ransomware group.
Headline
News

Blog: Resources to Protect America鈥檚 Rural Hospitals from Cyberthreats

Rural hospitals鈥� limited access to technology, staff and financial resources constrains their ability to defend against the malicious actors behind today鈥檚 ever-escalating cyberattacks, writes John Riggi, AHA national advisor for cybersecurity and risk, in a new blog on protecting rural hospitals鈥�
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

FBI Flash Report TLP Amber Consistent and Varied Targeting of FBI Public-Facing Networks between 1 July 2024 and 30 September 2024
The Federal Bureau of Investigation (FBI) is releasing this FLASH to disseminate indicators of compromise (IOCs) associated with malicious cyber activities targeting the FBI鈥檚 computer network between 1 July 2024 and 30 September 2024.
Headline
News

One year after Change Healthcare cyberattack, AHA report discusses lessons learned and continued need to mitigate risk

Nearly one year after the cyberattack on Change Healthcare, the AHA released a report highlighting the continued need for health care organizations to strengthen cybersecurity efforts and mitigate risk.  
Guides/Reports
Guides/Reports

Change Healthcare Cyberattack Underscores Urgent Need to Strengthen Cyber Preparedness for Individual Health Care Organizations and as a Field
The cyberattack on Change Healthcare in February 2024 disrupted health care operations on an unprecedented national scale.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - February 19, 2025
H-ISAC TLP Green Daily Cyber Headlines for February 19, 2025.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - February 19, 2025
A daily ransomware tracker at TLP:GREEN for the purpose of increasing ransomware threat awareness.
H-ISAC: White Reports
H-ISAC: White Reports

SonicWall SonicOS Flaw Confirmed to be Exploited In-the-Wild After PoC Release

The high-severity SSLVPN authentication bypass flaw affecting SonicWall firewalls running vulnerable SonicOS versions is actively being exploited in-the-wild.
Headline
News

DOJ announces charges for affiliates of Phobos ransomware group

The Department of Justice Feb. 10 announced charges for Roman Berezhnoy and Egor Nikolaevich Glebov, Russian nationals alleged to be leaders of a ransomware group operating under the names 鈥�8Base鈥� and 鈥淎ffiliate 2803,鈥� among others.
Headline
News

AHA discusses innovation, cybersecurity at digital health conference
The AHA participated at ViVE, a health care conference in Nashville focusing on digital health technology. Chris DeRienzo, M.D., AHA senior vice president and chief physician executive, led a session on using artificial intelligence to help tackle financial, operational and logistical barriers to鈥�
Subscribe to Cybersecurity