Annie - RH-ISAC - Page 17 of 21 Blog

Vienna, VA (March 30, 2023) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) today announced that several cybersecurity solutions providers have joined the organization as new Associate Members. These companies will help to support the cybersecurity needs of the consumer-facing sector by providing thought leadership, resources, and expert guidance to RH-ISAC Core Members,…

Vienna, VA (8 March 2023) –The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) will host its first-ever workshop in the E.U. to help businesses throughout the retail, hospitality, consumer packaged goods, and travel industries collectively defend against cybercrime. The workshop will take place on 20-21 April at the Nestlé corporate headquarters in Barcelona,…

The RH-ISAC intelligence team is publishing a catalog of the most prominent and prolific threat groups targeting our community as a resource for analysts. The catalog will be available via the RH-ISAC MISP instance and will include useful data on threat groups, including: Known aliases Background information and a brief history Prominent open-source incidents attributed…

On February 20, 2023, researchers with Sekoia.io reported the technical details of a new infostealer malware advertised for sale as “Stealc” by developers on dark web criminal forums. Context According to the report, “The threat actor presents Stealc as a fully featured and ready-to-use stealer, whose development relied on Vidar, Raccoon, Mars and Redline stealers.”…

Fulton, MD (February 22, 2023) —  CyberWire, an N2K Networks brand, and the Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) announced today that the organization’s podcast has joined the CyberWire Podcast Network. Already the leading audio network in the cybersecurity industry, CyberWire will expand its support to the retail and hospitality industry through…

Vienna, VA (February 15, 2023) – The Retail and Hospitality Information Sharing and Analysis Center (RH-ISAC) is now accepting speaker submissions for the 2023 RH-ISAC Cyber Intelligence Summit. The event, which is the premier conference for retail and hospitality cybersecurity professionals, will bring together experts from across the industry to discuss the latest threats and…

On February 8, 2023, Proofpoint researchers reported multiple phishing campaigns targeting organizations in multiple industries in the U.S. and Germany. Context Proofpoint attributes the activity to the likely financially-motivated TA866, which they assess is a new threat group. The campaign is currently active and has been since at least October 2022. Technical Details The emails…

Context Prilex has been active since at least 2014 and evolved from an automated teller machine (ATM) malware into a POS malware in 2016, primarily targeting Brazilian and South American retailers. In 2022, the malware evolved further, conducting fraudulent “GHOST transactions” using EMV cryptograms generated by payment cards during the payment process. In previous cases,…

The term “cybersecurity” can oftentimes be ambiguous and difficult to define, no different than that of a single or multi-family office. But much like an Investment Policy Statement, identifying and defining risk down to the individual level is paramount in achieving both near-term and strategic objectives. In this blog post, we seek to shed light…

Context On January 26, 2023, Trend Micro researchers reported the technical details of a new ransomware they dubbed “Mimic” they observed in June of 2022 targeting English and Russian-speaking users. Technical Details According to Trend Micro researchers, the campaign delivers an executable that drops multiple binaries and an archive containing the payload. Reportedly, the key…