Annie - RH-ISAC - Page 22 of 24 Blog

Vienna, VA (August 30, 2022) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) today announced that Splunk will be the title sponsor of the RH-ISAC Cyber Intelligence Summit which takes place September 20-21 in Dallas/Plano, TX.   This annual event is tailored for strategic leaders and cybersecurity practitioners from physical and online retailers, hotels,…

Context On August 4, 2022, Cisco Talos Intelligence researchers reported new technical details of a tool called “Dark Utilities” that provides a full suite of command-and-control (C2) capabilities for threat actors. The tool, which was released in early 2022, is advertised by creators as enabling remote access, command execution, distributed denial-of-service (DDoS) attacks, and cryptomining…

Context On August 3, 2022, ZScaler researchers reported the technical details of an adversary in the middle (AiTM) campaign active since at least June 2022. The RH-ISAC team believes, based on timing and nearly identical tactics, techniques, and procedures (TTPs), that this campaign is likely connected to highly similar activity previously reported by Microsoft. Key…

Vienna, VA (June 29, 2022) — The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) today announced Ira Winkler as the opening keynote speaker at the RH-ISAC Cyber Intelligence Summit taking place September 20-21, 2022, at the Hilton Dallas/Plano Granite Park in Plano, Texas. Ira serves as the chief security architect for the world’s largest retailer,…

Vienna, VA (June 14, 2022) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) will host an Emerging Technology Showcase on June 29-30. The event will highlight cutting-edge cybersecurity technologies and demonstrate how these solutions can mitigate cyber threats in the consumer-facing sector. The showcase will feature five sessions: Automating Security Hygiene More…

Vienna, VA (June 6, 2022) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) today released the Retail & Hospitality Industry Insights Report, which analyzes cybersecurity trends in the consumer-facing sector. The report compares key takeaways from the Verizon Data Breach Investigation Report (DBIR) with RH-ISAC member data to provide additional context that…

Context Microsoft has shared mitigation measures, which are included below, to block attacks exploiting the flaw, designated CVE-2022-30190, while a patch is being developed. Microsoft‘s entry for CVE-2022-30190 indicates it affects MSDT on all versions of Windows and Windows Server and has detected exploitation in the wild. The remote code execution vulnerability exists when Microsoft Support Diagnostic Tool (MSDT) is called using the…

Summary The notable ransomware gang known as Conti has, according to security firm Advanced Intel (AdvIntel), taken its infrastructure offline and shut down its ransomware operations. While public-facing ‘Conti News’ data leak and the ransom negotiation sites are still online, the Tor admin panels used by Conti members to perform negotiations, publish news, and generate…

Context On May 12, 2022, Apache released an advisory regarding a high severity vulnerability in Apache Tomcat. The vulnerability, designated CVE-2022-25762, affects Tomcat versions 9.0.0.M1 to 9.0.2o and 8.5.0 to 8.5.75. Apache advises users to upgrade to 9.0.21 or later or 8.5.76 or later to mitigate the vulnerability. A May 16, 2022 advisory from CISA…

Context On May 4, 2022, Connecticut became the fifth U.S. state to pass a set of data privacy rules and regulations aimed at protecting the privacy of its constituents. The bill, S.B. No. 6: Act Concerning Personal Data Privacy and Online Monitoring, joins similar legislative pieces passed in California, Virginia, Colorado and Utah. This rising trend…