Russia-Ukraine: Potential Cybersecurity Ramifications for Retail and Hospitality –

As the Russia/Ukraine crisis develops, the Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) is working to provide guidance to the retail and hospitality community concerned with the situation’s impact on their operations. Current Situation As it currently stands, the US and EU response to Russia’s actions has been mild, imposing limited sanctions that … Read more

Log4j Intelligence Summary Available – Dec 15, 2021

The Retail & Hospitality ISAC is providing some resources to ISCPO members: A daily summary that includes intelligence collected and actions taken regarding CVE-2021-44228. Download a partially redacted version of the summary for December 14, 2021 here. This intelligence summary report will be updated daily as our sector works to mitigate risk and damage from … Read more

CISA Link to Log4j Affected Products –

Critical Manufacturing (CM) Sector Partners, We are please to inform you that CISA and its partners have created a GitHub Repository for its sector partners to immediately identify, mitigate, and update affected products using Log4j to the latest version; and to inform your end users of products that contain these vulnerabilities and strongly urge them … Read more

CISA Releases Two ICT Supply Chain Resources to Improve Information Sharing and Assist Small and Medium-sized Businesses –

Cybersecurity Colleagues and Partners, Today, the Cybersecurity and Infrastructure Security Agency (CISA) (http://www.cisa.gov/) released two new products developed by the Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force to address liability challenges on sharing supply chain threat information and assist Small and Medium-sized Businesses (SMBs) with mitigating ICT supply chain risks. … Read more

CISA MS-ISAC Ransomware Guide –

Food and Agriculture Sector Members, Given the events of the past weekend, the SCC and GCC leadership felt that it would be timely to resend this information out to our sector partners.  Over the next few days, we will continue to forward additional resources as they are available. On September 30, 2020, the Cybersecurity and … Read more

Q&A on Cyber Security Vulnerabilities in the Supply Chain –

ISCPO association partner Daniel Argandona, CEO of Capital Security and Risk Group (CSRG) shares his recent Q&A discussion about cyber security vulnerabilities within the supply chain with Matt Barnett, Chief Strategist and Cofounder of SEVN-X, a firm specializing in cyber security incidents and breach response.  What is my role in the supply chains I participate … Read more

Reduce the Risk of Ransomware Campaign –

The Cybersecurity and Infrastructure Security Agency (CISA) announced the Reduce the Risk of Ransomware Campaign today, a focused, coordinated and sustained effort to encourage public and private sector organizations to implement best practices, tools and resources that can help them mitigate this cybersecurity risk and threat. CISA established a new one-stop resource at cisa.gov/ransomware. On this page, interested … Read more