Intelligence Report Analyzes Top Cyber Threats and Malware Families Targeting Retail & Hospitality

Vienna, VA (May 18, 2023) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) today released the public version of the Retail & Hospitality Intelligence Trends Summary, which analyzes trends in the cyberthreat landscape for the retail, hospitality, and travel sectors. The report sheds light on the top threats and malware families reported by the RH-ISAC community from January – April 2023.

Analysis of the intelligence sharing for this period showed that the top reported threats by volume continued to reflect the steady reliance by cybercriminals on tried and tested threat vectors like credential harvesting and phishing. Agent Tesla remained a key threat, Emotet has reemerged after falling off during previous reporting periods, and familiar threats like IcedID and QakBot remain steady threats to the community. Key tactics leveraged against the community included Spearphishing links and attachments, and imposter and malicious domains. As familiar threats continue to shape the threat landscape for the retail, hospitality, and travel sectors, emerging trends shift the nuances and demands on resources for cyber defenders.

In addition to the intelligence sharing analysis, the report highlights the most discussed topics in the CISO and analyst communities. Nearly half of the CISO discussions were related to security architecture, including sub-topics such as identity and access management (IAM), and tools integrations.

Download a copy of the report here. This report is a TLP: Clear redacted version of the original report, which includes privileged information available to RH-ISAC members.

###