Risk

8/1/2018
10:55 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Retail Cyber Intelligence Sharing Center (R-CISC) Forms Advisory Council

The council brings together members of the merchant community to provide education on cybersecurity issues facing the industries. The council's inaugural meeting was held in Washington, DC, in June.

Washington, DC – The Retail Cyber Intelligence Sharing Center (R-CISC), home of the Retail ISAC, has formed its Advisory Council. The R-CISC Advisory Council gathers together leading trade associations representing merchant industries, key R-CISC Associate members including industry stakeholders and government agencies, to provide a broader perspective across priorities and visibility on key cybersecurity issues.

The Advisory Council comes together with the joint goal of having a unified voice for merchants in the cybersecurity space. The organizations will collaborate on educational resources, building trust in the community and other initiatives.

The group hosted its inaugural meeting in Washington, DC last month. Organizations in attendance included a few of the members, the Food Marketing Institute (FMI), Deloitte, National Restaurant Association, National Retail Federation (NRF), and the Retail Industry Leaders Association (RILA). The Advisory Council is continuing to grow to include other members from government agencies, cybersecurity experts and other merchant trade associations.

During the meeting, the R-CISC presented the retail threat landscape as seen by cybersecurity experts and via R-CISC member sharing of threat information, and potential educational topics for the merchant community, including third-party risk, working with legal departments to gain support for information sharing, and how best to protest small merchant organizations.

“Retailers, restaurants, hotels and consumer-facing industries are intent on protecting their customers and their companies from cyber threat actors and groups. The R-CISC Advisory Council was formed to unite the advocates for these industries, as well as our strategic partners, with the common goal of providing a forum for discussion on cybersecurity issues and allowing for streamlined messaging on them from our industries,” said Suzie Squier, executive director of the Retail Cyber Intelligence Sharing Center, home of the Retail ISAC.

The R-CISC’s number one priority is strengthening collective defenses to better protect members – and the merchant industry – by sharing information on bad actors’ techniques, tactics and processes. By sharing information on these threats with Advisory Council members, the R-CISC helps them in their advocacy on behalf of the merchant industry. The council, in turn, provides support to the R-CISC in continuing to disseminate information about the organization to their members.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Election Websites, Back-End Systems Most at Risk of Cyberattack in Midterms
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/14/2018
Intel Reveals New Spectre-Like Vulnerability
Curtis Franklin Jr., Senior Editor at Dark Reading,  8/15/2018
Data Privacy Careers Are Helping to Close the IT Gender Gap
Dana Simberkoff, Chief Compliance and Risk Management Officer, AvePoint, Inc,  8/20/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-12579
PUBLISHED: 2018-08-20
An issue was discovered in OXID eShop Enterprise Edition before 5.3.8, 6.0.x before 6.0.3, and 6.1.x before 6.1.0; Professional Edition before 4.10.8, 5.x and 6.0.x before 6.0.3, and 6.1.x before 6.1.0; and Community Edition before 4.10.8, 5.x and 6.0.x before 6.0.3, and 6.1.x before 6.1.0. An attac...
CVE-2018-14020
PUBLISHED: 2018-08-20
An issue was discovered in the Paymorrow module 1.0.0 before 1.0.2 and 2.0.0 before 2.0.1 for OXID eShop. An attacker can bypass delivery-address change detection if the payment module doesn't use eShop's checkout procedure properly. To do so, the attacker must change the delivery address to one tha...
CVE-2018-14023
PUBLISHED: 2018-08-20
Open Whisper Signal (aka Signal-Desktop) before 1.15.0-beta.10 allows information leakage.
CVE-2018-1394
PUBLISHED: 2018-08-20
Multiple IBM Rational products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 138425.
CVE-2018-1517
PUBLISHED: 2018-08-20
A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.