Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

Headline
News

Medicare beneficiaries alerted to contractor data breach 
A May data breach involving MOVEit Transfer software on Medicare contractor Maximus Federal Services’ corporate network may have exposed an estimated 612,000 Medicare beneficiaries’ personally identifiable information and/or protected health information, the Centers for Medicare & Medicaid…
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

Joint Cybersecurity Advisory TLP Clear: Preventing Web Application Access Control Abuse
SUMMARY The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC), U.S. Cybersecurity and Infrastructure Security Agency (CISA), and U.S. National Security Agency (NSA) are releasing this joint Cybersecurity Advisory to warn vendors, designers, and developers of web…
Headline
News

CISA urges action to protect against Citrix vulnerability

Malicious actors recently exploited a Citrix vulnerability to steal active directory data from a critical infrastructure organization, the Cybersecurity and Infrastructure Security Agency reported recently, urging organizations to take certain steps to detect a potential system compromise and apply…
Guides/Reports
Guides/Reports

Cybersecurity Advisory: Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells
The Cybersecurity and Infrastructure Security Agency (CISA) is releasing this Cybersecurity Advisory to warn network defenders about exploitation of CVE-2023-3519, an unauthenticated remote code execution (RCE) vulnerability affecting NetScaler (formerly Citrix) Application Delivery Controller (ADC…
Headline
News

Agencies warn hospitals, others about tracking technology compliance risks
The Department of Health and Human Services’ Office for Civil Rights and Federal Trade Commission yesterday sent a letter to about 130 hospital systems and telehealth providers reminding them to comply with HIPAA Privacy, Security and Breach Notification Rules, the FTC Act and FTC Health Breach…
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Alert Report - July 20, 2023

Alerts published on July 20, 2023.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - July 21, 2023
Today’s Headlines: Leading Story Google Categorizes 6 Real-World AI Attacks to Prepare for Now Data Breaches & Data Leaks Nothing to Report Cyber Crimes & Incidents
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Physical Security Report - July 21-2023
H-ISAC TLP Green Daily Physical Security Report - July 21-2023.
H-ISAC: Green Reports
H-ISAC: Green Reports

Daily Alert Report - July 18, 2023
Alerts published on July 18, 2023
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Weekly Blog Hacking Health Care TM - July 19 2023
This week, Hacking HealthcareTM examines the newly released National Cyber Strategy Implementation Plan.
Subscribe to Cybersecurity