Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

8/1/2018
10:55 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Retail Cyber Intelligence Sharing Center (R-CISC) Forms Advisory Council

The council brings together members of the merchant community to provide education on cybersecurity issues facing the industries. The council's inaugural meeting was held in Washington, DC, in June.

Washington, DC – The Retail Cyber Intelligence Sharing Center (R-CISC), home of the Retail ISAC, has formed its Advisory Council. The R-CISC Advisory Council gathers together leading trade associations representing merchant industries, key R-CISC Associate members including industry stakeholders and government agencies, to provide a broader perspective across priorities and visibility on key cybersecurity issues.

The Advisory Council comes together with the joint goal of having a unified voice for merchants in the cybersecurity space. The organizations will collaborate on educational resources, building trust in the community and other initiatives.

The group hosted its inaugural meeting in Washington, DC last month. Organizations in attendance included a few of the members, the Food Marketing Institute (FMI), Deloitte, National Restaurant Association, National Retail Federation (NRF), and the Retail Industry Leaders Association (RILA). The Advisory Council is continuing to grow to include other members from government agencies, cybersecurity experts and other merchant trade associations.

During the meeting, the R-CISC presented the retail threat landscape as seen by cybersecurity experts and via R-CISC member sharing of threat information, and potential educational topics for the merchant community, including third-party risk, working with legal departments to gain support for information sharing, and how best to protest small merchant organizations.

“Retailers, restaurants, hotels and consumer-facing industries are intent on protecting their customers and their companies from cyber threat actors and groups. The R-CISC Advisory Council was formed to unite the advocates for these industries, as well as our strategic partners, with the common goal of providing a forum for discussion on cybersecurity issues and allowing for streamlined messaging on them from our industries,” said Suzie Squier, executive director of the Retail Cyber Intelligence Sharing Center, home of the Retail ISAC.

The R-CISC’s number one priority is strengthening collective defenses to better protect members – and the merchant industry – by sharing information on bad actors’ techniques, tactics and processes. By sharing information on these threats with Advisory Council members, the R-CISC helps them in their advocacy on behalf of the merchant industry. The council, in turn, provides support to the R-CISC in continuing to disseminate information about the organization to their members.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
97% of Americans Can't Ace a Basic Security Test
Steve Zurier, Contributing Writer,  5/20/2019
How a Manufacturing Firm Recovered from a Devastating Ransomware Attack
Kelly Jackson Higgins, Executive Editor at Dark Reading,  5/20/2019
Why AI Will Create Far More Jobs Than It Replaces
John DiLullo, CEO, Lastline,  5/14/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Talk about vendor lock in...
Current Issue
Building and Managing an IT Security Operations Program
As cyber threats grow, many organizations are building security operations centers (SOCs) to improve their defenses. In this Tech Digest you will learn tips on how to get the most out of a SOC in your organization - and what to do if you can't afford to build one.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-11816
PUBLISHED: 2019-05-20
Incorrect access control in the WebUI in OPNsense before version 19.1.8, and pfsense before 2.4.4-p3 allows remote authenticated users to escalate privileges to administrator via a specially crafted request.
CVE-2019-10076
PUBLISHED: 2019-05-20
A carefully crafted malicious attachment could trigger an XSS vulnerability on Apache JSPWiki 2.9.0 to 2.11.0.M3, which could lead to session hijacking.
CVE-2019-10077
PUBLISHED: 2019-05-20
A carefully crafted InterWiki link could trigger an XSS vulnerability on Apache JSPWiki 2.9.0 to 2.11.0.M3, which could lead to session hijacking.
CVE-2019-10078
PUBLISHED: 2019-05-20
A carefully crafted plugin link invocation could trigger an XSS vulnerability on Apache JSPWiki 2.9.0 to 2.11.0.M3, which could lead to session hijacking. Initial reporting indicated ReferredPagesPlugin, but further analysis showed that multiple plugins were vulnerable.
CVE-2019-12239
PUBLISHED: 2019-05-20
The WP Booking System plugin 1.5.1 for WordPress has no CSRF protection, which allows attackers to reach certain SQL injection issues that require administrative access.