Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White: Joint Alert: Iranian Government-Sponsored MuddyWater Actors Conducting Malicious Cyber Operations
The United States Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the US Cyber Command Cyber National Mission Force (CNMF), and the United Kingdom’s National Cyber Security Centre (NCSC-UK) have observed a group of Iranian government-sponsored…
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report -February 24, 2022
A daily ransomware tracker as TLP:GREEN for purposes of increasing ransomware threat awareness.
Headline
News

AHA advises hospitals to protect against increased Russian cyberthreat
The AHA recommended hospitals and health systems take certain immediate steps to protect against increased cyber risks to the U.S. health system stemming from the ongoing military operations in the Russia/Ukraine region.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Threat: Russia Invades Ukraine Cyberattacks Observed - February 24, 2022
Russian President Vladimir Putin announced early Thursday morning of a coordinated military operation in the multiple regions of Ukraine, just a few days after the recognition of rebel states Donetsk People’s Republic and Luhansk People’s Republic.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - February 24, 2022
H-ISAC TLP Green Daily Cyber Headlines for February 24, 2022.
Advisory
Advisory

U.S. Declares Start of Russia’s Invasion of Ukraine, Introduces Sanctions; “Cyber Shields Up,” Says CISA
Steps hospitals and health systems can take amid cyberthreats stemming from Russia’s invasion of Ukraine.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Threat: Joint Cybersecurity Advisory: New Sandworm Malware Cyclops Blink Replaces VPNFilter

The United Kingdom National Cyber Security Centre (NCSC), the United States Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Federal Bureau of Investigation (FBI) have identified that the actor known as Sandworm or Voodoo Bear is using a new…
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Hacking Healthcare Report - February 23, 2022
This week, Hacking Healthcare begins by highlighting the National Institute for Standards and Technology’s (NIST) request for public comment on a potential update to their cybersecurity framework.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Indicator Sharing: Microsoft Teams Spearphishing - UserCentric.exe
In a report from Avanan, researchers identified a file used by threat actors to spearphish users in Microsoft Teams.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Alert Report - February 18, 2022
H-ISAC TLP Green Daily Alert Report for February 18, 2022
Subscribe to Cybersecurity