Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

Headline
News

HHS alerts health sector to coronavirus-related phishing campaigns

Cyber criminals are using the 2019 novel coronavirus to launch malicious phishing campaigns, the Department of Health and Human Services’ Office of the Assistant Secretary for Preparedness and Response reported.
Guides/Reports
Guides/Reports

CISA Alert: AA20-031A: Detecting Citrix CVE-2019-19781
National Cyber Awareness System: AA20-031A: Detecting Citrix CVE-2019-19781<
FBI TLP Alert
FBI TLP Alert

FBI Flash: Unidentified Cyber Actors Exploit Citrix Vulnerability to Gain Access to Networks
      Beginning mid-January 2020, unidentified cyber actors have used a Citrix vulnerability, CVE-2019-19781, in an attempt to exploit hundreds of U.S. networks, to include private companies, educational institutions, healthcare-related infrastructure, and local and federal…
Other Cybersecurity Reports
Other Cybersecurity Reports

THE 405(d) Vol 3 POST Newsletter - January 2020
Cyber Security for the Small Medical Practice in Ten Minutes.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC Report: Hacking Healthcare - TLP White, January 29, 2020
In this edition of Hacking Healthcare, we begin with an Idaho National Lab researcher that is shedding light on just how little we know about the threat of ICS (Industrial Control Systems) vulnerabilities.
Guides/Reports
Guides/Reports

HC3 Intelligence Briefing Zeppelin Ransomware - TLP White January 23, 2020
HHS Cybersecurity Program Office of Information Security - HC3 Intelligence Briefing: Zeppelin Ransomware
Headline
News

FDA alerts providers to cyber vulnerabilities in certain GE medical devices
The FDA alerted health care providers to cybersecurity vulnerabilities in certain GE Healthcare clinical information central stations and telemetry servers that may allow an attacker to remotely take control of these medical devices and silence, generate and interfere with alarms for connected…
Guides/Reports
Guides/Reports

H-ISAC Report: Hacking Healthcare - TLP White, January 21, 2020
In this edition of Hacking Healthcare, we begin with security researchers calling for a common language for hardware vulnerabilities.
Guides/Reports
Guides/Reports

HHS Cybersecurity Program: HC3 Intelligence Briefing: Botnet Threat to the Healthcare Industry TLP White
Hackers are launching cyberattacks against SMB ports and IoT devices at a record pace.
Guides/Reports
Guides/Reports

H-ISAC Report: Hacking Healthcare - TLP White, January 14, 2020
In this edition of Hacking Healthcare, we begin with a reminder that increased digitization in healthcare brings many benefits, but also requires contingency planning.
Subscribe to Cybersecurity