Trustwave SpiderLabs Unveils Top Cyber Threats Facing Retailers in 2024

As the holiday shopping season approaches, the 2024  Trustwave Risk Radar Report: Retail Sector highlights a growing threat to the retail sector. Cybercriminals have refined their tactics, preparing to launch ransomware and phishing attacks that exploit well-known online brands. These attacks aim to defraud retailers and consumers, with the skills gained being used to infiltrate…

Read More

RH-ISAC Releases Standards and Best Practices Document for Hospitality

The standards and best practices document provide a high-level overview of the twenty most critical cybersecurity controls hoteliers, online travel agencies (OTAs), and connectivity providers should focus on, particularly highlighting identity and access management (IAM) best practices, which can act as critical barriers for many prevalent fraud operations. Download the document here. The standards and…

Read More

Retail & Hospitality ISAC Announces New Board of Directors

VIENNA, VA (November 4, 2024) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) announced the results of the 2024 Board of Directors elections today. Eli Edelkind, CISO at CAVA, was elected as a new member of the board, and Benjamin Vaughn, CISO at Hyatt Hotels, and Marnie Wilking, CSO at Booking.com, were both re-elected for three-year…

Read More

Midnight Blizzard Conducts Large-Scale Spear-Phishing Campaign Utilizing RDP Files

Summary Since October 22, 2024, Microsoft Threat Intelligence has observed recorded activity of the Russian threat actor known as Midnight Blizzard conducting a sophisticated spear-phishing campaign aimed at individuals in various sectors, including government, academia, defense, and non-governmental organizations. This ongoing activity involves sending highly targeted emails, which include a signed Remote Desktop Protocol (RDP) configuration file…

Read More