Agenda - RH-ISAC Summit The RH-ISAC Summit Agenda is Live! Check out our lineup of speakers and topics addressing retail & hospitality cybersecurity challenges.

The 2026 RH-ISAC Cybersecurity Summit agenda is officially out! We’re bringing together the brightest minds in the industry to share insights, solve problems, and build a stronger collective defense. summit2026.rhisac.or...

#CyberSecuritySummit #InfoSec #RHISAC #Networking

Cybersecurity = business priority.

RH-ISAC CSO Pam Lindemoen explains why hotel CISOs are stepping into the spotlight and why guest trust starts before check-in.

Read in Hotel Business Review: hotelexecutive.com/feature_focu...

#RHISAC #CISO #Cybersecurity #Hospitality

🚨 Fake Microsoft OAuth apps are bypassing MFA and stealing Microsoft 365 credentials.

Retail & hospitality orgs face risks to loyalty systems, POS, and internal comms.

📌 Full breakdown: www.rhisac.org/threat-intel...

#CyberSecurity #Phishing #RHISAC

📘 The 2025 CISO Benchmark Report reveals how top retail & hospitality orgs are:

✅ Cutting tech debt faster
✅ Strengthening continuity
✅ Investing in AI & 3rd-party defense

Read more 👉🏼 rhisac.org/resources/ci...

#CISOReport #CyberResilience #RHISAC

RH-ISAC’s 2025 CISO Benchmark Report dives into this and other key shifts shaping cyber risk in retail & hospitality.

Get more insights 📥 rhisac.org/resources/ci...

#CyberSecurity #RHISAC #Deepfakes #ThreatIntel #CISOReport

🚨 It’s here! The 2025 #CISO Benchmark Report from RH-ISAC &
@Accenture
is now live.

Discover key trends in ransomware, ATO, supply chain risk, NIST maturity & more - plus what sets top orgs apart.

Download now 📥 rhisac.org/press-releas...

#RHISAC #CyberSecurity

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC - RH-ISAC Citrix has released urgent security updates for a critical memory overflow vulnerability, CVE-2025-6543, affecting its NetScaler ADC and Gateway products.

Citrix has issued a patch for CVE-2025-6543, a #NetScaler ADC flaw currently under watch for exploitation.

No need for alarm - just a timely update or mitigation for those using #VPN or AAA virtual servers.

Details - rhisac.org/threat-intel...

#CyberSecurity #RHISAC

Join us July 25 at 11 a.m. ET to explore the NRF News Retail Fraud Taxonomy 🧠

Built with RH-ISAC, Target & The Chertoff Group, it helps classify fraud threats & map defenses.

🔓 Open to all
🔗 rhisac.zoom.us/meeting/regi...

#RetailFraud #CyberSecurity #RHISAC #NRF #ThreatIntel

Sainsbury's Rewards Program Targeted by Malicious Actor for Monetary Gain - RH-ISAC Users of the UK grocery/retail chain Sainsbury's Nectar loyalty program are being warned about a surge in points theft, with one customer recently reporting

#LoyaltyFraud is a continued challenge. 🎯

Sainsbury’s Nectar program is the latest target, with stolen points turned into quick cash.

Read our latest blog on how it happened - and how to defend against it:
🔗 rhisac.org/threat-intel...

#CyberSecurity #RetailFraud #RHISAC

DragonForce Actors Target SimpleHelp Vulnerabilities To Attack MSP, Customers - RH-ISAC Sophos Managed Detection and Response (MDR) recently intervened in a targeted cyberattack against an unnamed Managed Service Provider (MSP), where threat

🚨 New blog: DragonForce actors exploited SimpleHelp RMM flaws to deploy ransomware via an MSP.

Learn how they used CVEs 2024-57727/28/26, what it means for retail & hospitality, and get IOCs to stay ahead.

🔗 rhisac.org/threat-intel...

#RHISAC #CyberSecurity #MSP

📍 Cybersecurity teams in Canada - #RHISAC is coming to Toronto!

Join us 26 Aug for a free, in-person workshop hosted by Loblaw with peer threat sharing, expert insights, & a post-event happy hour.

🎟️Register: www.eventbrite.com/e/rh-isac-wo...

#CyberSecurity #InfoSharing #RetailSecurity

Yes24 Ransomware Outage Causes Multiple Concert Cancelations and Business Impact in South Korea - RH-ISAC Yes24, a major South Korean ticketing platform and online book retailer, has been heavily impacted by a ransomware attack, causing a four-day service outage

A #Ransomware attack on Yes24 forced major K-pop concert cancellations & a 4-day outage in South Korea. RH-ISAC breaks down the business & cyber impact - and what companies should learn from it.

🧠 Read more - rhisac.org/threat-intel...

#CyberSecurity #RHISAC #ThreatIntel

Discounts and Special Offers - RH-ISAC Industry-leading service and product providers committed to the RH-ISAC community

🔍 RH-ISAC members: Get a free 2-year look-back fraud analysis from TrustMi.

Uncover past fraud and human errors using AI—no workflow disruption, no heavy lift.

Learn more & redeem 🌐 rhisac.org/member-benef...

#CyberSecurity #FraudDetection #RHISAC #AI #PaymentsSecurity

China-Nexus Threat Actor Actively Exploiting Ivanti Endpoint Manager Mobile Vulnerability - RH-ISAC EclecticIQ has identified active exploitation of two critical vulnerabilities (CVE-2025-4427 and CVE-2025-4428) in Ivanti Endpoint Manager Mobile (EPMM)

Ivanti EPMM users: patches are available for CVE-2025-4427 & 4428. RH-ISAC breaks down the exploit path, indicators of compromise, and steps for staying secure. No cause for alarm - just good cyber hygiene.

📖 rhisac.org/threat-intel...

#CyberSecurity #RHISAC #Ivanti

Discounts and Special Offers - RH-ISAC Industry-leading service and product providers committed to the RH-ISAC community

🛡️ RH-ISAC members: Get 1 year of Threater FREE!

Block threats your firewall misses with automated threat enforcement across your network.

🔓 Offer includes full access for 12 months.
👉 rhisac.org/member-benef...

#CyberSecurity #ThreatDetection #NetworkSecurity #RHISAC

🗓️ San Francisco: Join us on 20 August for the #RHISAC Regional Workshop hosted by LeviStrauss & sponsored by @kasada-io.bsky.social.

Network, share intel, and learn with peers from the #Retail & Hospitality sector.

🎟️ Free to attend for eligible pros 🔗 www.eventbrite.com/e/rh-isac-wo...

SYDNEY: Join us 6 Aug for the #RHISAC Regional Workshop hosted by @woolworths! To be held at Google Sydney HQ, the day includes threat briefings, peer talks, and networking.

Free for eligible cyber pros 🎟️
🔗 www.eventbrite.com/e/rh-isac-wo...

#CyberSecurity #RetailSecurity

📢 Don’t miss RH-ISAC’s next Threat Landscape Briefing on June 13 at 11 AM ET!

Featuring intel from XM Cyber & @securityscorecard.bsky.social - covering recent attacks, mitigation tips & peer insights in retail & hospitality.

🔗 Register: us02web.zoom.us/meeting/regi...

#CyberSecurity #RHISAC

Operationalizing Cybercrime Data for Red Teams & Offensive Ops Let’s pull back the curtain on how adversaries—from curious hobbyists to full-blown nation-state actors—leverage stolen credentials for initial access. In this session, we’ll dig into how these actors operate in the underground: the way they move through darkweb markets, Telegram channels, and Discord servers to build, buy, and trade access.We’ll walk through what it takes to infiltrate those communities (think sock puppet management, trust-building, and surviving the sketchiest forums), and how to turn that chaos into usable threat intel for your red team or offensive security ops. We’ll hit on some tool walkthroughs, show real-world workflows, and even talk about the pros and cons of rolling your own credential DBs vs. just buying access like the bad guys do.Whether you're already deep in the weeds or just getting started with cybercrime data, you'll walk away with new insights and some spicy tactics to level up your game.

🎯 Go on the offensive with Flare Systems.
Join Jason Haddix on June 23 for a deep dive into how red teams and offensive ops can operationalize cybercrime data to level up threat detection.

📅 June 23 | 11 AM ET
🔗 Register: bit.ly/43RgaSv

#CyberSecurity #ThreatIntel #Data #RHISAC

🔐 #RHISAC Core Members: Help your vendors strengthen their cyber defenses.

Our 6-week summer #Webinar series covers asset inventory, #Phishing, #2FA, backups, DMARC & more - tailored for SMB vendors.

📅 Starts June 11, Wednesdays @ 12:30pm ET
🔗 rhisac.zoom.us/meeting/regi...

📊 The 2025 Verizon DBIR is here - #RHISAC breaks down what it means for #Retail, #Hospitality & travel.

- #Ransomware up 37%
- Credential theft leads
- 34% rise in vuln exploits
- AI drives attack scale

Read the insights: rhisac.org/wp-content/u...

Discounts and Special Offers - RH-ISAC Industry-leading service and product providers committed to the RH-ISAC community

🚨 RH-ISAC members: Get 2 weeks of full access to @flaresystems threat intelligence platform.

✅ Monitor up to 800 identifiers
✅ Search dark web, Telegram, GitHub & more
✅ Get timely insights via Threat Flow

Start your trial 👉🏼 rhisac.org/member-benef...

#RHISAC #ThreatIntel

🗺️ #RHISAC Regional Workshops are coming to a city near you!

Network with peers, swap threat intel & dive into the latest cyber trends in retail & hospitality.

Check upcoming locations & book your spot 👉🏼 rhisac.org/regional-wor...

#CyberSecurity #ThreatIntel #RetailSecurity

Introduction to the Ransomware Ecosystem This foundational workshop examines the modern ransomware landscape, providing insights into operations, techniques, and prevention strategies. The session offers a comprehensive overview of ransomware group structures and methodologies.Topics include:Ransomware group organization and operationsInitial access and deployment techniquesNegotiation tactics and strategiesPayment processing and infrastructurePrevention and response methodologiesParticipants will learn:Identifying ransomware indicatorsUnderstanding attack methodologiesAnalyzing ransom negotiationsTracking cryptocurrency movementsImplementing defensive strategiesThe workshop provides a mix of theoretical knowledge and practical demonstration of key concepts.

🧠 New training from Flare! Join Sr. Threat Intel Researcher Tammy Harper for an intro to the ransomware ecosystem - how it works, who's involved, and how to fight back.

📅 June 4 | 11 AM ET
🔗 Register: bit.ly/4kBTf4j

#Ransomware #CyberThreats #RHISAC

🛡️ #RHISAC members: Get 3 extra months free when you sign up for any 12-month enterprise-grade bundle from @blackcloakcyber.bsky.social.

Protect executives from cyber, privacy & reputational risks.

Details & more member perks 🌐 rhisac.org/member-benefit…

#CyberSecurity

#RHISAC is heading to #CyberFest2025!

📍 Join us 3–4 June at The Fox Pub, London for two days of immersive cyber talks, networking, and hands-on fun. @Luke Van Der Linden will be hosting a booth - come say hi!

🛠️ Explore the latest in #ThreatIntel 🗓️ rhisac.org/event/ptp-cy...

🛡️ #Phishing is evolving - and so is the criminal toolkit behind it.

New #PhaaS platforms like Tycoon 2FA make it easier to bypass MFA & target entire supply chains.

Know the risks. Build resilience.

#RetailSecurity #CyberSecurity #RHISAC #ThreatIntel #CyberResilience

Booz Allen and Merck's AI Security & Governance Workshop Join us at Booz Allen's AI Workshop in Austin to share and network with your peers from across the critical infrastructure sectors.

🎓 Join @boozallenhamilton.bsky.social & Merck for a hands-on AI Security & Governance Workshop.
📅 June 11 8 - 5 CDT | Space is limited

Register & secure your spot, here 👉🏼 www.eventbrite.com/e/booz-allen...

#AIsecurity #CyberGovernance #RHISAC

Q1 2025 Quarterly Threat Report Uncover the latest bot threats, fraud trends, and automated attack tactics. Learn what’s happening in the criminal underground and how to stay ahead.

🤖 Kasada's Q1 Bot Threat Report is here.

Find out how bots are evolving - and what it means for #Retail & #Hospitality security teams.

Dive in 🌐 www.kasada.io/reports/2025...

#BotDefense #CyberSecurity #RHISAC