H-ISAC TLP White Finished Intelligence Report: HC3 Sector Note - December 2020 Vulnerability Bulletin

January 12, 2021

On December 2020, a host of vulnerabilities found in common information systems relevant to the health and public health (HPH) sector were disclosed however the ones that were released warrant attention. This includes the Patch Tuesday vulnerabilities in addition to ad-hoc vulnerability announcements of ongoing mitigation steps and/or patches. Please review the attached report for vulnerabilities this month involving Microsoft, Adobe, Intel, SAP, Cisco, Apple, and MobileIron as these vulnerabilities have been recommended for careful consideration for patching by any healthcare organization with respect to each vulnerability criticality category against organization risk management posture. 

Key Resources

Related Resources

Guides/Reports
HC3 TLP Clear: Privileged User Compromise
Public
Special Bulletin
Red Cross, America’s Blood Centers, AABB Say U.S. Faces Critical Blood and Platelet Shortages
Public
Advancing Health Podcast
Going International: The FBI's Global Fight Against Cybercrime
Public
Advisory
American Hospital Association and Health-ISAC Joint Threat Bulletin - TLP White
Public
Advisory
Hospitals in Florida, Other States Impacted by Effects of Cyberattack on Blood-donation Nonprofit OneBlood
Member
Guides/Reports
CLEAR Crisis Leadership Tip Sheets