Mispandu Bank Trojan Campaigns Targeting Latin American Organizations for Credential Harvesting

On March 20, 2023, Metabase Q security researchers reported the technical details of more than 20 different campaigns targeting organizations in Chile, Mexico, Peru, and Portugal with the Mispandu bank trojan. According to the report, the campaigns attempt to “steal credentials from users when accessing online banking, schools, government services, social media, gaming, ecommerce, public…

Read More

Winter Vivern Cyberespionage Campaign Targeting Global Telecommunication and Government Organizations

On March 16, 2023, SentinelLabs researchers reported the technical details of a cyberespionage campaign against government and telecommunications companies in multiple enterprises which they attribute to the Winter Vivern threat group. Context SentinelLabs researchers assess that current Winter Vivern activities align closely with Belarussian and Russian government interests. The SentinelLabs report is based on recent…

Read More

Retail and Hospitality ISAC to Host First Sector-Focused Workshop in Europe

Vienna, VA (8 March 2023) –The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) will host its first-ever workshop in the E.U. to help businesses throughout the retail, hospitality, consumer packaged goods, and travel industries collectively defend against cybercrime. The workshop will take place on 20-21 April at the Nestlé corporate headquarters in Barcelona,…

Read More

Understanding the Business Impact of Bots

Digital transformation efforts continue to accelerate and are pivotal for industries to sustain business and ensure growth. The major challenge is securing applications against malicious bots. Marshalling the resources to achieve this requires explaining the quantitative and qualitative impacts bots have on your business in terms your board and C-Suite will understand. As a business…

Read More

Social Engineering Scams Targeting Fashion and Brand Influencers Increasing in Prevalence and Sophistication

Context During the second half of 2022, multiple RH-ISAC member analysts reported observing increases in fraud and phishing activity targeting popular social media figures and user-generated content (UGC) creators (i.e. “influencers”) leveraging member brand names as part of the scams. The fraud activity spikes observed in the past few months have been both prolific and…

Read More

RH-ISAC Publishes Threat Actor Profile Catalog

The RH-ISAC intelligence team is publishing a catalog of the most prominent and prolific threat groups targeting our community as a resource for analysts. The catalog will be available via the RH-ISAC MISP instance and will include useful data on threat groups, including: Known aliases Background information and a brief history Prominent open-source incidents attributed…

Read More

New “Stealc” Malware Builds on Prevalent Infostealers

On February 20, 2023, researchers with Sekoia.io reported the technical details of a new infostealer malware advertised for sale as “Stealc” by developers on dark web criminal forums. Context According to the report, “The threat actor presents Stealc as a fully featured and ready-to-use stealer, whose development relied on Vidar, Raccoon, Mars and Redline stealers.”…

Read More

Retail & Hospitality ISAC joins the CyberWire Podcast Network

Fulton, MD (February 22, 2023) —  CyberWire, an N2K Networks brand, and the Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) announced today that the organization’s podcast has joined the CyberWire Podcast Network. Already the leading audio network in the cybersecurity industry, CyberWire will expand its support to the retail and hospitality industry through…

Read More

Join us for the 2023 Regional Workshop Series

The 2023 RH-ISAC Regional Workshop series kicks off in February and will include in-person professional development opportunities in locations across the U.S. and Europe. This series features interactive discussions and threat landscape briefings, including mitigation or response techniques. In addition, attendees will get intel on observed incidents and emerging threats relevant to the retail and…

Read More

Call for Speakers Now Open for the RH-ISAC Cyber Intelligence Summit

Vienna, VA (February 15, 2023) – The Retail and Hospitality Information Sharing and Analysis Center (RH-ISAC) is now accepting speaker submissions for the 2023 RH-ISAC Cyber Intelligence Summit. The event, which is the premier conference for retail and hospitality cybersecurity professionals, will bring together experts from across the industry to discuss the latest threats and…

Read More