Hospitals Warned of Planned Terrorist Threats in Mid-Tier Cities
USA, Friday, 21 March 2025.
Health-ISAC and AHA alert hospitals of potential, coordinated terrorist attacks targeting facilities in mid-size U.S. cities, urging enhanced security and collaboration with the FBI.
Immediate Threat Assessment
On March 18, 2025, security officials identified social media posts detailing plans for coordinated terrorist attacks against healthcare facilities [1]. The threats specifically target hospitals in mid-tier U.S. cities with populations ranging from 100,000 to 500,000, with attackers potentially utilizing vehicle-borne explosive devices and armed assaults [3]. The American Hospital Association (AHA) and Health-ISAC are actively coordinating with FBI headquarters to investigate the credibility of these threats [3].
Healthcare Cybersecurity Landscape
This threat emerges amid growing concerns about healthcare security vulnerabilities. Forescout Technologies, which manages security for over 400,000 hospital beds worldwide, recently received recognition for its Internet of Medical Things (IoMT) Security solution [2]. According to Barry Mainz, CEO of Forescout, the increasing connectivity of medical devices has created unprecedented security challenges for healthcare operations and patient safety [2].
Response and Preparedness Measures
John Riggi, national advisor for cybersecurity and risk at AHA, emphasizes the importance of visible security presence as a deterrent measure [3]. Healthcare facilities are being advised to enhance their emergency management response plans and strengthen security protocols [1]. The threat assessment particularly highlights vulnerabilities in facilities with lower security profiles, which are considered attractive targets due to high foot traffic and critical infrastructure status [3].
Ongoing Vigilance and Security Integration
As the healthcare sector confronts these emerging threats, organizations are implementing comprehensive security approaches that combine physical and cyber protection measures. The Health Industry Cybersecurity Practices (HICP) framework addresses critical threats including ransomware, phishing, and insider threats [1]. While investigations continue, healthcare facilities are maintaining heightened alert status [alert! ‘ongoing investigation may reveal new threat vectors’]. The FBI’s active involvement suggests the seriousness with which authorities are treating these threats [3].