Taking a Neighborhood Watch Approach to Retail Cybersecurity

Threatpost

Bugcrowd CTO Casey Ellis covers new cybersecurity challenges for online retailers.

American retailer Guess discloses data breach after ransomware attack

Security Affairs

American clothing brand and retailer Guess discloses a data breach after the February ransomware attack and is notifying the affected customers. On July 9, 2021, the fashion retailer started sending notification letters to the individuals whose information may have been involved.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Retail Privacy Network

Data Matters

You are invited to join privacy professionals in the retail sector for topical conversation, learning and networking at the first Retail Privacy Network meeting. This interactive meeting will include hot topics in UK/EU data privacy and cybersecurity with practical case studies on retail industry issues. The post Retail Privacy Network appeared first on Data Matters Privacy Blog.

ThreatList: Most Retail Hardware Bug Bounty Flaws Are Critical

Threatpost

Overall, across all retail programs, more than 18 percent of all bug bounty submissions are critical in severity, a new Bugcrowd report found. IoT Mobile Security Most Recent ThreatLists bug bounty Bugcrowd Bugcrowd’s 2019 State of Retail Cybersecurity report point of sale retail Retail Security

Hunton Publishes 2020 Retail Industry Year in Review

Hunton Privacy

This is an extraordinary and unprecedented time for the retail industry. Hunton Andrews Kurth’s 2020 Retail Industry Year in Review provides an in-depth analysis of the issues and challenges that retailers faced in the past year, and a look ahead at what they can expect in 2021.

ThreatList: Cyber Monday Looms – But Shoppers Oblivious to Top Retail Threats

Threatpost

Malware Most Recent ThreatLists Web Security black friday cisa alert coronavirus COVID-19 credit cart skimmer cyber monday Cybersecurity digital payment skimmer holiday shopping magecart malicious app online shopping top cyber threats

Retail Banks’ Lofty Goals and Where to Start

InfoGoTo

Retail banks in the United States face a whole host of challenges including customer confidence, regulatory compliance, attracting new customers, cybersecurity, utilizing big data and mastering social media, to name a few. Given these challenges, it’s not so surprising that retail banks would align their priorities with these challenges. This is why being able to successfully execute big data and advanced analytics is so important for retail banks.

CGI Client Global Insights: A look at top retail banking trends and priorities

CGI

CGI Client Global Insights: A look at top retail banking trends and priorities. We summarize the findings and insights from these discussions in the CGI Client Global Insights retail banking report.

Hunton Publishes Retail Year in Review

Hunton Privacy

On January 18, 2018, Hunton & Williams LLP’s retail industry lawyers, composed of more than 100 lawyers across practices, released their annual Retail Year in Review publication. The Retail Year in Review includes several articles authored by our Global Privacy and Cybersecurity lawyers, and touches on many topics of interest including blockchain, ransomware, cyber insurance and the Internet of Things.

Online Retailer LightInTheBox exposes unsecured DB containing 1.3TB of web server logs

Security Affairs

LightInTheBox is a Chinese online retailer trading on the New York Stock Exchange, most of its customers are in North America and Europe. vpnMentor researchers pointed out that the security measures implemented by the retailer were insufficient.

Record Levels of Software Bugs Plague Short-Staffed IT Teams in 2020

Threatpost

retailers have vulnerabilities which pose an “imminent” cyber-threat, including Amazon, Costco, Kroger and Walmart. As just one symptom, 83 percent of the Top 30 U.S.

IT 103

Are Data Breaches the New Reality for Retail?

Thales Cloud Protection & Licensing

As digital transformation takes hold, the retail industry is under siege from cyber criminals and nation states attempting to steal consumers’ personal information, credit card data and banking information. While retailers digitally transform their businesses to better serve the higher demands of their customers, they’re being challenged with safeguarding personal data to protect customers, partners and suppliers’ critical information.

The Anti-Tom’s Guide to Reckless Holiday Shopping

MediaPro

Blog Confessions of an Awareness Nerd Foundational Security Awareness Thought Leadership cybersecurity online shopping retail scams security awareness security awareness trainingThe post The Anti-Tom’s Guide to Reckless Holiday Shopping appeared first on MediaPRO.

Is Your Cybersecurity Ready for the Holidays?

Adam Levin

Retailers around the world are anticipating less foot traffic in their shops this holiday season, with more than 75% of consumers expected to do most of their shopping online due to the pandemic. The post Is Your Cybersecurity Ready for the Holidays?

Cybersecurity Insurance

Schneier on Security

Companies like retailers, banks, and healthcare providers began seeking out cyberinsurance in the early 2000s, when states first passed data breach notification laws. breaches cybersecurity insuranceGood article about how difficult it is to insure an organization against Internet attacks, and how expensive the insurance is.

Home Depot Settles 2014 Breach Lawsuit for $17.5 Million

Data Breach Today

Home Supply Retailer Must Also Implement Several Cybersecurity Protocols The Home Depot reached a $17.5 million settlement in a class-action lawsuit stemming from a 2014 data breach that compromised the payment card data of 40 million of the retailer's customers.

Retail 249

How To Keep Cybersecure Over the Holidays

Adam Levin

An enormous number of people are footloose and fancy free when it comes to their interactions with retailers over the holiday season,” says Cyberscout founder and chairman Adam Levin. How to Be Cybersecure in Virtual Family Gatherings.

Lessons for In-House Counsel from Cybersecurity’s Front Lines

HL Chronicle of Data Protection

Recent developments reinforce the urgent need for general counsel and legal departments to deepen their focus on cybersecurity. Lessons for In-House Counsel from Cybersecurity’s Front Lines was written by members of the Hogan Lovells Privacy and Cybersecurity practice Peter M. In today’s environment, any organization can be the target of a cyberattack, regardless of industry, size, or geographic footprint.

The Cost of Dealing With a Cybersecurity Attack in These 4 Industries

Security Affairs

A cybersecurity issue can cause unexpected costs in several different areas, which is the cost of Dealing with an attack in 4 Industries? A cybersecurity issue can cause unexpected costs in several different areas. And, the costs go up if the health care facility does not have a cybersecurity response plan to use after an attack gets identified. Retail. Statistics from 2016 showed that the average cost per compromised retail record was $172.

National Cybersecurity Alliance advocates ‘shared responsibility’ for securing the Internet

The Last Watchdog

NCSA operates the StaySafeOnline website that provides a variety of cybersecurity educational resources and programs. Schrader: We are a leading nonpartisan, nonprofit group that’s very involved as a convener of experts to talk about a number of the top issues in cybersecurity. We also have a lot of educational programs that reach far beyond the insular, cybersecurity expert areas. A large retailer may spend millions on cyber security. The targeting of Sen.

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

Most of the attacks have been reported in July, the organizations hit by the ransomware gang operate in professional services, construction, manufacturing, retail, and food industries. The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0

Port Covington, MD re-emerges as ‘CyberTown, USA’ — ground zero for cybersecurity research

The Last Watchdog

When CyberTown, USA is fully built out, it’s backers envision it emerging as the world’s premier technology hub for cybersecurity and data science. DataTribe , a Fulton, MD-based cybersecurity startup incubator, has been a key backer of this ambitious urban redevelopment project , which broke ground last October in Port Covington, MD, once a bustling train stop on the south side of Baltimore.

Major IPS in New Zealand hit by massive DDoS, Internet outages reported

Security Affairs

Vocus provides retail, wholesale and corporate telecommunications services across Australia and New Zealand. Breaking News Hacking Cybersecurity cybersecurity news DDoS hacking news information security news New Zealand Pierluigi Paganini Security Affairs Security News

MY TAKE: Michigan’s cybersecurity readiness initiatives provide roadmap others should follow

The Last Watchdog

or MEDC, I’m prepared to rechristen Michigan the Cybersecurity Best Practices State. My reporting trip included meetings with Michigan-based cybersecurity vendors pursuing leading-edge innovations, as well as a tour of a number of thriving public-private cybersecurity incubator and training programs. What’s noteworthy, from my perspective, is that Snyder had the foresight to make cybersecurity readiness a key component of his reinvent Michigan strategy, from day one.

The Ecommerce Surge: Guarding Against Fraud

Data Breach Today

As more consumers shift to online shopping during the COVID-19 pandemic, retailers must ramp up their efforts to guard against ecommerce payment fraud, says Toby McFarlane, a cybersecurity expert at CMSPI, a payments consultancy

Retail 156

UK ICO Issues Unprecedented Fine Against Mobile Phone Retailer for Lax Security

Hunton Privacy

On January 8, 2017, the UK Information Commissioner (“ICO”) issued an unprecedented monetary penalty of £400,000 against British mobile phone retailer, The Car Phone Warehouse Limited. Cybersecurity Enforcement International Security Breach Encryption EU Regulation Information Commissioners Office Penalty Personal Data Privacy United Kingdom

Georgia’s HB 156, requiring state notice for utility cybersecurity incidents, is now in effect

DLA Piper Privacy Matters

Learn more about the Georgia law and breaking developments in cybersecurity law by contacting the authors or your DLA Piper relationship attorney Authors: Lael Bellamy and Emily Maus.

FOIA 56

From channel to customer: How an omni-channel experience is the key to the retail industry’s success

CGI

From channel to customer: How an omni-channel experience is the key to the retail industry’s success. Is the hype around the retail store being dead simply that, hype? Retailers that are thriving in today’s disrupted and highly competitive environment have transformed the role of the brick-and-mortar store to effectively bridge the gap between the physical and digital worlds. One of the largest sporting goods retailers is a good case in point.

REvil gang exploited a zero-day in the Kaseya supply chain attack

Security Affairs

Ciaran Martin , former head of the NCSC , provided disconcerting info about the supply chain ransomware attack that disrupted 20% of Swedish food retail capacity, pharmacies, train ticket sales.

Retail 109

Cybersecurity Identified as an SEC OCIE Examination Priority for 2018

Data Matters

On February 7, 2018, the SEC’s Office of Compliance Inspections and Examinations (OCIE) released its 2018 National Exam Program Examination Priorities (2018 Exam Priorities) and, once again, identified cybersecurity as one of its main areas of focus. According to OCIE, each of its examination programs will prioritize cybersecurity. OCIE emphasized the “critical” importance of cybersecurity protection to market operation and the far-reaching effects of cyber threats.

Risk 60

Cosmolog Kozmetik Data Breach: Hundreds of Thousands of Customers impacted

Security Affairs

The securWizCase experts found a major breach that affected the popular online retailer Cosmolog Kozmetik. l, has found a major breach in popular online retailer Cosmolog Kozmetik’s database. About the author: Cybersecurity Research Team.

4 Industries That Have to Fight the Hardest Against Cyberattacks

Security Affairs

Recent demonstrations from cybersecurity researchers have shown how it’s possible to hack into medical devices like pacemakers or insulin pumps. So, if nonprofit leaders want to devote more money to cybersecurity, they may feel too financially strapped to make meaningful progress. Also, nonprofits may feel overwhelmed about where to start as they learn about cybersecurity. Retail. Despite those risks, retailers make blunders when budgeting for cybersecurity.

Researchers uncovered the network infrastructure of REVil – The notorious ransomware group that hit Kaseya

Security Affairs

Ransomware #Cybersecurity #ThreatIntel #ThreatHunting #Malware pic.twitter.com/G32IrY2GxD — Resecurity (@resecurity_com) July 7, 2021. One suspected victim of the breach, the Sweden-based retailer Coop, closed at least 800 stores over the weekend after its systems were taken offline.

Cybersecurity impact of Covid-19: Q&A with CISO Myke Lyons

Collibra

So we took a moment to ask our CISO Myke Lyons his thoughts on the cybersecurity impact of Covid-19. Prior to coronavirus, how would you describe the global state of cybersecurity? The post Cybersecurity impact of Covid-19: Q&A with CISO Myke Lyons appeared first on Collibra.

TicketClub Italy Database Offered in Dark Web

Security Affairs

According to Saraj Pant, cyber threat intelligence analyst with Resecurity, Los-Angeles -based cybersecurity company, it is not the first time such resources have been attacked by cybercriminals. .

Sales 91

Recent Risk Alerts by SEC OCIE Highlight Privacy and Cybersecurity Issues in Examinations

Data Matters

The SEC’s Office of Compliance Inspections and Examinations (OCIE) released two Risk Alerts, on April 16, 2019 and May 23, 2019, highlighting the importance of privacy and cybersecurity compliance for SEC-registered investment advisors and broker-dealers under Regulation S-P. As previously covered on Data Matters, OCIE has consistently identified cybersecurity as one of its main areas of focus for examinations. Cybersecurity Enforcement Financial Privacy SEC

DoJ announced to have shut down Slilpp marketplace in international operation

Security Affairs

The marketplace had been active since 2012, it was allowing sellers to offer stolen login credentials, including usernames and passwords for bank accounts, online payment accounts, mobile phone accounts, retailer accounts, and other online accounts.

Joker's Stash Advertises Second Batch of Indian Card Data

Data Breach Today

Haul of 460,000 Bank Cards Retailing for $4.2

Retail 161

Global Scamdemic: Scams Become Number One Online Crime

Security Affairs

In 2020, a multi-stage scam called Rabbit Hole targeted companies’ brands, primarily retail and online services. Breaking News Cyber Crime Hacking Cybercrime Cybersecurity cybersecurity news hacking news information security news Pierluigi Paganini scam Security Affairs Security News

Spotlight Podcast: At 15 Cybersecurity Awareness Month Grows with Cyber Risk

The Security Ledger

In this Spotlight Podcast, sponsored by RSA: October is Cybersecurity Awareness Month. But what does that mean in an era when concerns about cybersecurity permeate every facet of our personal and professional lives? Russ Schrader of the National Cybersecurity Alliance (NCSA) and Angel Grant of RSA join us to discuss the history of Cybersecurity. » Related Stories Spotlight Podcast: 15 Years Later Is Cybersecurity Awareness Month Working?