Taking a Neighborhood Watch Approach to Retail Cybersecurity

Threatpost

Bugcrowd CTO Casey Ellis covers new cybersecurity challenges for online retailers.

Holiday Shopping Craze, COVID-19 Spur Retail Security Storm

Threatpost

Podcasts Vulnerabilities Web Security Amazon Prime Day black friday COVID-19 cyber monday holiday shopping magecart online shopping Pandemic podcast retail Retail Security retail software Target Veracode

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Digital Transformation In Retail: The Retail Apocalypse

erwin

Much like the hospitality industry , digital transformation in retail has been a huge driver of change. One important fact is getting lost among all of the talk of “the retail apocalypse” and myriad stories about increasingly empty shopping malls: there’s a lot of money to be made in retail. In fact, the retail market was expected to grow by more than 3 percent in 2018 , unemployment is low, and wages are at least stable.

Chilean-based retail giant Cencosud hit by Egregor Ransomware

Security Affairs

Chilean-based retail giant Cencosud has suffered a ransomware attack that impacted operations at its stores, Egregor ransomware appears to be involved. BleepingComputer was the first to confirm that the retail giant was hit by Egregor ransomware after it obtained the ransom note.

German laptop retailer fined €10.4m under GDPR for video-monitoring employees

Security Affairs

fine under GDPR against the online laptop and electronic goods retailer NBB for video-monitoring employees. million fine under the GDPR against an online laptop and electronic goods retailer NBB’s (notebooksbilliger.de) for video-monitoring employees for at least a couple of years.

Retail in 2019 needs security precautions

Thales eSecurity

As the retail industry follows suit with today’s digital transformation, customer expectations are at an all-time high. Retailers are looking to address these demands with interconnected experiences to give customers more personalized and immediate experiences both in-stores and online. They might at first glance, but retailers are now exposing themselves to a whole host of security risks as these connected shopping technologies evolve. Data security

8 Holiday Security Tips for Retailers

Dark Reading

Here's how retailers can protect their businesses from attackers and scammers hoping to wreak havoc during the most wonderful time of the year

PCI Security Council, Retail ISAC Warn Retailers on Magecart Attacks

Dark Reading

Online card-skimming activities grew sharply this summer fueled by the availability of attack kits and other factors, Malwarebytes says

High-Severity Cisco Flaw Found in CMX Software For Retailers

Threatpost

Cisco fixed high-severity flaws tied to 67 CVEs overall, including ones found inits AnyConnect Secure Mobility Client and in its RV110W, RV130, RV130W, and RV215W small business routers.

Retail 101

Retail execution with SAP DAM

OpenText Information Management

The battle is called retail execution. Securing shelf space is not cheap and persuading retailers to take your products means convincing them your product is … The post Retail execution with SAP DAM appeared first on OpenText Blogs. Customer Experience Management Enterprise Content Management Information Management Omni-Channel cem dam digital asset management Hybris OpenText Retail Execution SAP SAP Customer Experience SAP DAM

Retailers increase cyber security spending, but attacks continue to rise

IT Governance

The UK’s biggest retailers are spending more than ever on cyber security but are continuing to see an alarming rise in cyber attacks and data breaches due to the ever-evolving threat landscape, a report has found. According to The British Retail Consortium’s 2019 Retail Crime Survey , large organisations invested £162 million in cyber defences in the 2017­–18 financial year, an increase of 17% on 2017. Are retailers investing wisely? Retail

Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach

Security Affairs

Retail giant Home Depot has agreed to a $17.5 The US largest home improvement retailer giant Home Depot agrees to $17.5 According to the US retailer the payment card information of approximately 40 million Home Depot consumers nationwide.

ThreatList: Most Retail Hardware Bug Bounty Flaws Are Critical

Threatpost

Overall, across all retail programs, more than 18 percent of all bug bounty submissions are critical in severity, a new Bugcrowd report found. IoT Mobile Security Most Recent ThreatLists bug bounty Bugcrowd Bugcrowd’s 2019 State of Retail Cybersecurity report point of sale retail Retail Security

Cybercriminals Target Budding Cannabis Retailers

Dark Reading

Companies in the young, rapidly growing industry are targeted for sensitive information they store and immature security practices

Retailers Face Many Challenges, Data Security Doesn’t Have to be One of the Them

Thales eSecurity

Retailers and shoppers are leveraging and enjoying many benefits data sharing brings: loyalty programs, personalized experiences, easier product location and ordering, online shopping, mobile access and the list goes on. Competition is one of many challenges retailers face and while that’s nothing new, the data-driven approach online and brick-and-mortar merchants use today is evolving quickly with transformative technology capabilities. Data security

Managing HR in The Retail Sector in the COVID-19 World

InfoGoTo

A good example of implementing these changes can be found with HR in the retail sector. Traditional retailers, those with physical storefronts, had struggled before COVID-19. Then the pandemic hit and most retailers were declared non-essential and shut down.

7 Holiday Security Tips for Retailers

Dark Reading

It's the most wonderful time of the year - and hackers are ready to pounce. Here's how to prevent them from wreaking holiday havoc

Holiday Shoppers Beware: 100K Malicious Sites Found Posing as Well-Known Retailers

Threatpost

Web Security copycat sites Fraud holiday shopping Let's Encrypt Phishing retail tls valid certificatesThe copycat sites are using valid certificates to be more convincing.

DPIAs for retail and hospitality 

IT Governance

It’s relevant for everyone, including retail and hospitality. Retail and hospitality organisations will likely need to conduct several to cover all their processes, both new and existing. Common activities for retail and hospitality requiring DPIAs. To give an idea of what activities may require a DPIA in real terms for the retail and hospitality sectors, here is a non-exhaustive list: CCTV.

Number of Retailers Impacted by Breaches Doubles

Dark Reading

The retail race for digital transformation is being run without the safety of security measures

Retail Sector Second-Worst Performer on Application Security

Dark Reading

A "point-in-time" approach to PCI compliance could be one reason why so many retailers appear to be having a hard time

Securing Retail Networks for an Omnichannel Future

Dark Reading

Retailers who haphazardly move to digital from a brick-and-mortar environment can leave their businesses open to significant cybersecurity vulnerabilities. Here's how to avoid the pitfalls

Retail Cyberattacks Set to Soar 20% in 2019 Holiday Season

Threatpost

A couple of factors this year are making the 2019 holiday shopping season a circus for cybercriminals when it comes to cyberattacks against retail orgs. Podcasts Web Security cyberattack cybercrime emotet holiday shopping holiday shopping security malware Online Security ransomware retail

Account Takeover Fraud Losses Total Billions Across Online Retailers

Threatpost

Account takeover fraud (ATO) attacks are on the rise, up nearly 300 percent since last year.

Information Security and Compliance Through the Prism of Healthcare and Retail

AIIM

Organizations must focus strategically on how to manage digital content and understand that: 1) end-users are consuming technology differently; 2) consumer devices are being increasingly used as “on-ramps” to digital workflows; and 3) how you secure the scan and capture process becomes increasingly important. Let’s explore how these concepts relate to two specific industries – healthcare and retail. compliance healthcare scanning information security information capture retail

Multiple Retailers Sued Under CCPA for Sharing Data Used to Identify Fraudulent Returns

Hunton Privacy

Earlier this year, The Retail Equation, a loss prevention service provider, and Sephora were hit with a class action lawsuit in which the plaintiff claimed Sephora improperly shared consumer data with The Retail Equation without consumers’ knowledge or consent. Information Security U.S.

Legendary Help: Supporting retailers with efficient and secure payment systems

Rocket Software

Like any software, POS systems need constant updates to remain optimized and secure. In the case of one Rocket client, an IT solutions provider that supplies point-of-sale solutions to thousands of retailers in the U.S., These updates protect transactions and financial data and keep them secure. Their code is now more secure and efficient, and the risk of developers inadvertently wiping out each other’s work is minimized. Keeping businesses running is a team effort.

Sports retail giant Decathlon leaks 123 million customer and employee records

IT Governance

Decathlon, the world’s largest sporting goods retailer, has suffered a massive data breach, affecting 123 million customer and employee records. Cyber security researchers at vpnMentor found a leaky database on a publicly accessible Elasticsearch server. It contained information from the retailer’s Spanish businesses and potentially its UK stores. Employees’ names, addresses, usernames, passwords, social security numbers, phone numbers and dates of birth were all affected.

Retail has a multi-cloud problem…with sensitive data

Thales eSecurity

Digital transformation (DX) is fundamentally impacting all aspects of the economy across every industry, and nowhere is this truer than in retail. DX technologies such as cloud, mobile payments, IoT, Big Data and others have fundamentally changed retailers’ business models, not only by opening new channels to reach customers, but also in how they communicate with, serve, and support them. Tools that reduce multi-cloud data security complexity are critical. Data security

How data breaches are affecting the retail industry

IT Governance

Only time will tell – and we may not have to wait long – but in the meantime, what is the impact of data breaches in the retail industry, and what needs to be done to mitigate them? World-famous retailer Fortnum & Mason suffered a data breach , affecting 23,000 of its customers, through a Typeform service used to collect votes for one of the categories in its food and drink awards. Despite the prospect of fines and other penalties, many retailers are still not PCI-compliant.

Are Data Breaches the New Reality for Retail?

Thales eSecurity

As digital transformation takes hold, the retail industry is under siege from cyber criminals and nation states attempting to steal consumers’ personal information, credit card data and banking information. While retailers digitally transform their businesses to better serve the higher demands of their customers, they’re being challenged with safeguarding personal data to protect customers, partners and suppliers’ critical information.

Experts Weigh in on E-Commerce Security Amid Snowballing Threats

Threatpost

How a retail sector reeling from COVID-19 can lock down their online systems to prevent fraud during the upcoming holiday shopping spike.

Sales 82

ThreatList: Cyber Monday Looms – But Shoppers Oblivious to Top Retail Threats

Threatpost

Malware Most Recent ThreatLists Web Security black friday cisa alert coronavirus COVID-19 credit cart skimmer cyber monday Cybersecurity digital payment skimmer holiday shopping magecart malicious app online shopping top cyber threats

It’s time to think twice about retail loyalty programs

Thales eSecurity

As I was starting to write this blog, yet another retail program data breach occurred, for Marriott’s Starwood loyalty program. What I’d originally planned to write about was a topic that directly applies – why retailers of all stripes are not investing in data security. To make a long story short – the top reason that they didn’t invest in data security was “lack of perceived need” at 52%. But none of these reasons rose to the top in retail. Data security

CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer

Hunton Privacy

On August 5, 2020, the French Data Protection Authority (the “CNIL”) announced that it has levied a fine of €250,000 on French online shoe retailer, Spartoo, for various infringements of the EU General Data Protection Regulation (“GDPR”).

Retail Banks’ Lofty Goals and Where to Start

InfoGoTo

Retail banks in the United States face a whole host of challenges including customer confidence, regulatory compliance, attracting new customers, cybersecurity, utilizing big data and mastering social media, to name a few. Given these challenges, it’s not so surprising that retail banks would align their priorities with these challenges. According to an article by The Financial Brand , retail banks’ top priorities include: using big data, AI and advanced analytics.

Connected Customer 360 Profiles for Retail & Luxury Brands

Reltio

3 Things Data Innovators at Retail & Luxury Brands Have in Common. Retail and luxury brand leaders may use different terms to describe customers, including “clients” or “guests.” But, the most innovative retail and luxury brand leadership teams have 3 common areas of focus when it comes to their customers: They focus on building long-term customer relationships. These are the customer data silos of a retailer that’s undergoing a transformation.

Pairing Privacy and Security with Digital Identities in Retail

Threatpost

InfoSec Insider Privacy Web Security amazon consolidated view customer experience digital identities eve maler forgerock infosec insiders omnichannel online shopping SecurityOmnichannel views of customers are a competitive edge -- but they have to be appropriately implemented.

Cyber Monday is Every Monday: Securing the ‘New Normal’

Threatpost

Podcasts Vulnerabilities Web Security connnected speakers consumer grade routers cyber monday eCommerce IoT devices Privacy retail threats Router Security

Magecart cybercrime group stole customers’ credit cards from Newegg electronics retailer

Security Affairs

Magecart hackers have stolen customers’ credit card data from the computer hardware and consumer electronics retailer Newegg. The Magecart cybercrime group is back, this time the hackers have stolen customers’ credit card data from the computer hardware and consumer electronics retailer Newegg. behind the Ticketmaster and British Airways data breaches has now victimized popular computer hardware and consumer electronics retailer Newegg.