Cybersecurity
Cyber Threat Intelligence, Alerts and Reports
As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.
You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.
Cybersecurity & Risk Advisory
Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.
Learn More
Mandiant recently elevated a tracked threat cluster to the named threat group FIN11. Beginning in 2016 with phishing campaigns, this group has moved into double extortion ransomware operations utilizing CLOP ransomware.
Federal agencies this morning are providing new information on an imminent ransomware threat to U.S. hospitals.
The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) last night issued a joint advisory warning of credible information of an increased and imminent cybercrime threat to U.S. hospitals and…
In this issue, Hacking Healthcare dives into a less talked about aspect of U.S.–China relations, specifically, the possible detainment of American citizens as a diplomatic reprisal.
This advisory describes the tactics, techniques, and procedures (TTPs) used by cybercriminals against targets in the Healthcare and Public Health Sector (HPH) to infect systems with Ryuk ransomware for financial gain.
As physician practices reopen and hospitals around the country prepare for a second wave of COVID-19 infections coinciding with cold and flu season, the AHA and AMA have released a new resource to help them keep patients’ protected health information private and secure.
Callout Box: This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the ATT&CK for Enterprise version 7 for all referenced threat actor tactics and techniques.
This week, Hacking Healthcare continues with coverage on global cybercrime. We have a few
new developments to examine before breaking down what they might mean for the healthcare
sector. To begin, we try to put this year in cybercrime into perspective by delving into some
recently reported…
One of the greatest threats to U.S. National Security Systems (NSS), the U.S. Defense Industrial Base (DIB), and Department of Defense (DoD) information networks is Chinese state-sponsored malicious cyber activity. These networks often undergo a full array of tactics and techniques used by Chinese…
The National Security Agency released an advisory detailing 25 common vulnerabilities that Chinese state-sponsored cyber actors are actively exploiting to access computer networks for sensitive intellectual property and other information, and encouraged stakeholders to take appropriate action to…