Threat Intelligence

Threat Modeling for Mobile Health Systems

HC3 Threat Briefing – Threat Modeling for Mobile Health Systems Please see below the HHS Health Sector Cybersecurity Coordination Center (HC3) threat brief.  This brief focuses on  Threat Modeling for Mobile Health Systems and covers the following topics:   - Introduction - Threat Modeling...

Threat Actor Exploitation Post Pulse Secure VPN Patching

Health-ISAC Vulnerability Bulletin Date:  April 17, 2020 TLP: White Event: Continued Threat Actor Exploitation Post Pulse Secure VPN Patching Summary: On April 16, 2020, DHS Cybersecurity and Infrastructure Security Agency (CISA) published an Activity Alert "Continued threat actor exploitation...

Capturing Lessons Learned: COVID-19 After-Action Report

Capturing Lessons Learned: COVID-19 After-Action Report and Improvement Plan – It's never too late to start   Download pdf of blog with graphics here: [pdf-embedder url="https://h-isac.org/wp-content/uploads/2020/04/H-ISAC-COVID-19-AAR-Blog_4.16.20.pdf" title="H-ISAC COVID-19 AAR...

Free internet-facing Vulnerability Scanning

Free internet-facing Vulnerability Scanning  service from DHS CISA for H-ISAC members During this critical time of our Nations’ Healthcare Sector, DHS Cybersecurity & Infrastructure Security Agency (CISA) has partnered with H-ISAC to make available a free, continuous vulnerability scanning...

 Video-Teleconference Hijacking and Phishing Attacks Defense

TLP:WHITE   Event: Guidance on Defending Against Video-Teleconference Hijacking and Phishing Attacks    Summary:    On March 27, 2020, Health-ISAC released the threat bulletin “Zoom Bombing and Other Threats Affects Unsecured Web Meetings.”  Since then, multiple reports have surfaced that...

H-ISAC TIC Threat Bulletin: Ryuk Ransomware Infection Chain

H‐ISAC TIC Threat Bulletin Note: This is a TLP WHITE intelligence update from the H-ISAC Threat Intelligence Committee (TIC), comprised of high end analysts from member organizations who meet together during times of crisis and share standard operating procedures (SOP) on how to respond. More...

H-ISAC TIC Threat Bulletin

Date: January 24, 2019 TLP – WHITE Event: Weaknesses in Managed DNS Providers Processes Allow for Domain Hijacking Summary: Earlier this month, the US-CERT issued a bulletin with information on a large DNS infrastructure hijacking campaign. Ars Technica has also recently published an article...

Translate »