FBI Finds No Specific Credible Terror Threat Against U.S. Hospitals
On March 26, 2025, after an extensive investigation, the Federal Bureau of Investigation concluded that there is no specific credible terror threat against hospitals in any city in the United States. In the event of credible threat information being received, the FBI will inform the hospitals concerned or potential targets, and warnings will be issued to the broader healthcare and public health sector through appropriate channels such as the American Hospital Association (AHA) and Health-ISAC.
The AHA and Health-ISAC issued a warning last week after a social media post was viewed that suggested U.S. hospitals could soon be targeted in a coordinated, multi-city terrorist attack. The AHA and Health-ISAC had no information corroborating or discounting the credibility of the threat, and chose to issue a warning out of an abundance of caution. The AHA and Health-ISAC recommend hospitals maintain standard vigilance, including a visible security presence, as it will help to deter any act of targeted violence on hospital premises.
March 21, 2025 AHA; Health-ISAC Warn U.S. Hospitals About Potential Terror Threat
The American Hospital Association (AHA) and the Health Information Sharing and Analysis Center (Health-ISAC) have issued a joint threat bulletin warning hospitals about a potential coordinated multi-city terrorist attack on hospitals in the coming weeks. The warning was issued after the AHA and Health-ISAC observed a social media post on March 18, 2025, about potential coordinated terrorist attacks on U.S. hospitals by ISIS-K. The post was added to the X (Twitter) account of @AXactual, which claims to be a private company in the United States that consists of JSOC, CIA, and combat veterans. The AHA and Health-ISAC have no information corroborating or discounting the credibility of the threat, but say the threat should be taken seriously.
The post said chatter in ISIS-K training camps in Afghanistan confirms planning is in the advanced stages. According to the post, ISIS-K will likely be using Vehicle-Borne Improvised Explosive Devices (VBIEDs) followed by armed assaults and hostage scenarios. “Intelligence suggests these attacks must occur before Al-Q’aida’s planned aviation/D.C. attack, likely making hospitals a prelude to a larger-scale operation,” explained the post, warning that the attacks are likely to target hospitals across multiple mid-tier U.S. cities, with hospitals targeted since they are critical infrastructure and viewed as soft targets with low security and the potential for significant casualties.
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
The AHA and Health-ISAC are working closely with the Federal Bureau of Investigation (FBI) regarding the potential threat and will share further information with the sector as and when it becomes available, including if the credibility of the threat can be established. The AHA and Health-ISAC say foreign terrorist groups do not usually publicize an upcoming attack as it would give potential targets time to prepare. There is concern that even if the threat is not credible, such a widely shared post could encourage others to engage in malicious activity directed toward the health sector. UK police are also increasing security in response to the threat.
A 2022 study, The Rising Threat of Terrorist Attacks Against Hospitals, identified a total of 430 terrorist attacks on hospitals from a search of the Global Terrorism Database (GTD), with the frequency of attacks increasing over the past two decades. The increase is disproportionate to the overall increase in terrorist attacks against all targets over the same time frame. The authors warn that hospitals are particularly vulnerable as they are open 24/7/365, and any attack is likely to immediately result in many casualties and cause devastating second and third-order effects.
The AHA/Health-ISAC warning was issued out of an abundance of caution to raise awareness of the threat and to encourage hospitals to increase vigilance. The AHA and Health-ISAC recommend hospital security teams review their emergency management plans and raise awareness of the potential threat internally with their staff. All hospital staff should remain vigilant for suspicious activity, including people and vehicles on organizational premises and in the vicinity of health sector facilities. If the hospital terrorist attack threat is real, reconnaissance and surveillance are likely before any attack to identify potential targets. Having a visible security presence may mitigate being chosen as a target, suggest the AHA and Health-ISAC. If any suspicious activity is identified, it should be reported to law enforcement immediately.
“It is recommended that organizations review and evaluate the coordination and capabilities of physical security, cybersecurity, and emergency management plans. Also, increasing relationships with local and federal law enforcement may streamline response efforts during an attack, explained the AHA and Health-ISAC.”
