Retail, Risk and Security - Information Management Today

Fashion retailer Forever 21 data breach impacted +500,000 individuals

Security Affairs

AUGUST 31, 2023

Fashion retailer Forever 21 disclosed a data breach that exposed the personal information of more than 500,000 individuals. On March 20, 2023, the fashion retailer Forever 21 has discovered a cyber incident that impacted a limited number of systems. The retailer also notified law enforcement.

Retail

Retail Data breaches Personal data Ransomware

Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach

Security Affairs

NOVEMBER 25, 2020

Retail giant Home Depot has agreed to a $17.5 The US largest home improvement retailer giant Home Depot agrees to $17.5 According to the US retailer the payment card information of approximately 40 million Home Depot consumers nationwide. Online customers were not impacted by the security breach. ” . .

Retail

Retail Data breaches Information Security Security awareness

Volvo retailer leaks sensitive files

Security Affairs

APRIL 15, 2023

The Brazilian retail arm of car manufacturing giant Volvo leaked sensitive files, putting its clientele in the vast South American country in peril. Volvo’s retailer in Brazil, Dimas Volvo, leaked sensitive files through its website. website, belonging to an independent Volvo retailer in the Santa Catarina region of Brazil.

Retail

Retail Manufacturing Communications Passwords

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

American retailer Guess discloses data breach after ransomware attack

Security Affairs

JULY 13, 2021

American clothing brand and retailer Guess discloses a data breach after the February ransomware attack and is notifying the affected customers. The company investigated the security breach with the help of a cybersecurity forensic firm that determined that unauthorized actor had access to personal information stored into Guess systems.

Retail

Retail Data breaches Ransomware Access

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday josh.pearson@t… Tue, 11/26/2024 - 08:01 As Black Friday and Cyber Monday loom, the stakes for retailers extend far beyond enticing deals and record sales. With retail sales during 2024 set to grow to between $5.23 trillion and $5.28 trillion and $5.28

Retail

Retail Risk Data breaches Sales

Online Retailer LightInTheBox exposes unsecured DB containing 1.3TB of web server logs

Security Affairs

DECEMBER 17, 2019

LightInTheBox is a Chinese online retailer trading on the New York Stock Exchange, most of its customers are in North America and Europe. “Led by cybersecurity analysts Noam Rotem and Ran Locar, vpnMentor’s research team discovered a leak in a database belonging to the online retailer LightInTheBox.” concludes the post.

Retail

Retail e-Discovery Data breaches Archiving

Managing Asset Risks During Healthcare M&As

Security Affairs

JANUARY 17, 2023

How healthcare delivery organizations (HDOs) can manage the IT asset risks during a healthcare M&A process. An M&A is often associated with the “business world”; with industries such as finance, retail, technology, and more. And with new assets come new risks.

Risk

Risk Compliance Cybersecurity Retail

FTC Bans Rite Aid From Using Facial Recognition Tech

Data Breach Today

DECEMBER 20, 2023

5-Year Ban Comes After Retailer Failed to Mitigate Security Surveillance Risks The Federal Trade Commission has banned Rite Aid from using AI-based facial recognition technology for security surveillance for five years after the retail drug store chain failed to implement safeguards such as mitigating risks for inaccurate outputs based on race and (..)

Retail

Retail Risk Security

Nedbank client data compromised in security breach at third-party provider

Security Affairs

FEBRUARY 14, 2020

Nedbank bank announced on Thursday that a security breach at a third-party supplier has compromised the details of as many as 1.7 Nedbank bank disclosed on Thursday a security breach at a third-party supplier that has compromised the details of as many as 1.7 ” reads a security notice published by the bank.

Security

Security Marketing Retail Communications

Passwordless Authentication without Secrets!

Thales Cloud Protection & Licensing

OCTOBER 11, 2024

divya Fri, 10/11/2024 - 08:54 As user expectations for secure and seamless access continue to grow, the 2024 Thales Consumer Digital Trust Index (DTI) research revealed that 65% of users feel frustrated with frequent password resets. These fast-paced environments need a more flexible approach to balance security, speed, and user privacy.

Authentication

Authentication Retail Manufacturing Passwords

FBI Raids Chinese Point-of-Sale Giant PAX Technology

Krebs on Security

OCTOBER 26, 2021

federal investigators today raided the Florida offices of PAX Technology , a Chinese provider of point-of-sale devices used by millions of businesses and retailers globally. based WOKV.com reported that agents with the FBI and Department of Homeland Security (DHS) had raided a local PAX Technology warehouse. organizations.

Sales

Sales Retail Computer and Electronics Risk

4 Industries That Have to Fight the Hardest Against Cyberattacks

Security Affairs

DECEMBER 4, 2018

Society’s dependence on internet-based technologies means security professionals must defend against cyberattacks as well as more traditional threats, such as robbers or disgruntled employees. The medical industry faces an exceptional risk for cyberattacks because there are so many players involved in the sector. Health Care.

Retail

Retail Cybersecurity Data breaches Risk

Security Affairs newsletter Round 403 by Pierluigi Paganini

Security Affairs

JANUARY 22, 2023

Every week the best security articles from Security Affairs free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! If you want to also receive for free the newsletter with the international press subscribe here. The Irish DPC fined WhatsApp €5.5M The Irish DPC fined WhatsApp €5.5M

Security

Security Data breaches Retail Ransomware

Retail in 2019 needs security precautions

Thales Cloud Protection & Licensing

DECEMBER 28, 2018

As the retail industry follows suit with today’s digital transformation, customer expectations are at an all-time high. Retailers are looking to address these demands with interconnected experiences to give customers more personalized and immediate experiences both in-stores and online. The numbers don’t lie.

Retail

Retail Customer Experience Security Data breaches

Are Retailers Shopping for a Cybersecurity Breach?

Thales Cloud Protection & Licensing

NOVEMBER 22, 2022

Are Retailers Shopping for a Cybersecurity Breach? Retailers started the century as the prime targets for cyber attackers looking for credit card data. Today, unfortunately, retailers are again coming back to the spotlight. Similar to many organizations, 36% of retail respondents cited human error as the leading threat.

Retail

Retail Cybersecurity Ransomware Authentication

LockBit group falsely claimed the hack of the Federal Reserve

Security Affairs

JUNE 27, 2024

Evolve Bank & Trust this week published a notice on its website to confirm the security breach and announced it has launched an investigation into the incident. The data varies by individual but may include your name, Social Security Number, date of birth, account information and/or other personal information.

Retail

Retail Ransomware Cybersecurity Compliance

Multiple Retailers Sued Under CCPA for Sharing Data Used to Identify Fraudulent Returns

Hunton Privacy

AUGUST 13, 2020

Earlier this year, The Retail Equation, a loss prevention service provider, and Sephora were hit with a class action lawsuit in which the plaintiff claimed Sephora improperly shared consumer data with The Retail Equation without consumers’ knowledge or consent. Code § 1798.150).

Retail

Retail Privacy Data breaches Communications

Cybercriminals Accelerate Online Scams During Ramadan and Eid Fitr

Security Affairs

MARCH 24, 2024

During the month of Ramadan, Resecurity observed a significant increase in fraudulent activities and scams, coinciding with a surge in retail and online transactions. Middle Eastern enterprises, facing this heightened risk, are urged to bolster consumer protection and reinforce their brand security.

Retail

Retail Government Cloud Risk

Cosmolog Kozmetik Data Breach: Hundreds of Thousands of Customers impacted

Security Affairs

JUNE 17, 2021

The securWizCase experts found a major breach that affected the popular online retailer Cosmolog Kozmetik. WizCase’s security team, led by Ata Hakç?l, l, has found a major breach in popular online retailer Cosmolog Kozmetik’s database. If you bought any Cosmolog Kozmetik or Marketlog products, you might be at risk.

Data breaches

Data breaches Retail Privacy Risk

The North Face website suffered a credential stuffing attack

Security Affairs

NOVEMBER 15, 2020

Retail giant The North Face has reset the passwords for some of its customers in response to a successful credential stuffing attack. Outdoor retail giant The North Face has forced a password reset for a number of its customers following a successful credential stuffing attack that took place on October 8th and 9th.

Passwords

Passwords Data breaches Retail Access

Global Scamdemic: Scams Become Number One Online Crime

Security Affairs

JUNE 10, 2021

Using patented Digital Risk Protection (DRP) technologies, the experts at Group-IB discovered over 70 groups of fraudsters that are only used in one of the fraudulent schemes, Classiscam, of which 36 are aimed at Europe. The company also specializes in high-profile cyber investigations and digital risk protection.

Phishing

Phishing Retail Insurance Risk

Bluetooth Overlay Skimmer That Blocks Chip

Krebs on Security

FEBRUARY 15, 2021

As a total sucker for anything skimming-related, I was interested to hear from a reader working security for a retail chain in the United States who recently found Bluetooth-enabled skimming devices placed over top of payment card terminals at several stores.

Retail

Retail Risk IT Security

Oracle Critical Patch Update for January 2022 will fix 483 new flaws

Security Affairs

JANUARY 17, 2022

This pre-release announcement for Critical Patch Update (CPU) for January 2022 confirms that Oracle security updates will address 483 new security patches. “A Critical Patch Update is a collection of patches for multiple security vulnerabilities. This Critical Patch Update addresses 483 new security patches.

Communications

Communications Financial Services Big data Retail

Hacker who reported a flaw in Hungarian Magyar Telekom faces up to 8-years in jail

Security Affairs

FEBRUARY 3, 2019

Which are the risks for a hacker that decide to publicly disclose a vulnerability? According to the local media, in April 2018 the hacker found a serious security vulnerability in the website of the telco company, he exploited the issue to penetrate the telecommunications network. Now the hacker is facing up to 8 years in prison.

Retail

Retail Risk Access Security

GUEST ESSAY: Here’s why penetration testing has become a ‘must-have’ security practice

The Last Watchdog

FEBRUARY 24, 2022

Now, let me give you a few reasons, why pen testing has emerged as a “must-have” security practice. All risks are not equal; some are potentially more damaging than others. This will be based on making risk assessments partly based on the pen test results, as well as how much resources you are willing to allocate.

Security

Security Compliance Retail Risk

A Chief Security Concern for Executive Teams

Krebs on Security

DECEMBER 18, 2018

Virtually all companies like to say they take their customers’ privacy and security seriously, make it a top priority, blah blah. That’s because very few of the world’s biggest companies list any security executives in their highest ranks. banks) would have this role in their executive leadership team.

Security

Security Marketing Cybersecurity Data breaches

Google: Security Keys Neutralized Employee Phishing

Krebs on Security

JULY 23, 2018

Google has not had any of its 85,000+ employees successfully phished on their work-related accounts since early 2017, when it began requiring all employees to use physical Security Keys in place of passwords and one-time codes, the company told KrebsOnSecurity. A YubiKey Security Key made by Yubico. a mobile device). a mobile device).

Phishing

Phishing Security Authentication Passwords

News alert: Beazley reports on how AI, new tech distract businesses as cyber risk intensifies

The Last Watchdog

JULY 13, 2023

London, July 13, 2023 — Beazley, the leading specialist insurer, today published its latest Risk & Resilience report: Spotlight on: Cyber & Technology Risks 2023. Yet, boardroom focus on cyber risk appears to be diminishing. trillion by 2025, a 300% increase since 2015 1.

Risk

Risk Insurance Energy and Utilities Marketing

Sports retail giant Decathlon leaks 123 million customer and employee records

IT Governance

FEBRUARY 26, 2020

Decathlon, the world’s largest sporting goods retailer, has suffered a massive data breach, affecting 123 million customer and employee records. Cyber security researchers at vpnMentor found a leaky database on a publicly accessible Elasticsearch server. What’s at risk?

Retail

Retail Phishing Data breaches Education

New Data Covers How the Retail Market is at Greater Risk of Industry-Specific Cyberthreats

KnowBe4

NOVEMBER 22, 2023

A new analysis of the retail market’s threat landscape discusses the challenges faced by this industry and what threat tactics are being used to take advantage of retail’s cyber weaknesses.

Retail

Retail Marketing Risk Security awareness

Attack of drones: airborne cybersecurity nightmare

Security Affairs

DECEMBER 2, 2022

There exists a class of tiny and highly maneuverable devices that introduce a variety of cybersecurity risks you probably haven’t considered before. According to research firm Statista, the global retail drone market is expected to reach $90 billion by 2030, with Defense, Enterprise, and Logistics being the primary industries driving growth.

Cybersecurity

Cybersecurity Computer and Electronics Authentication Marketing

FBI warns of crooks targeting online shoppers during the holiday season

Security Affairs

NOVEMBER 25, 2021

In this period netizens hope to take advantage of online bargains and are more active online, for this reason they are more exposed to the risk of scams. Be wary of online retailers who use a free email service instead of a company email address. The FBI warns of cyber criminals targeting online shoppers during the holiday season.

e-Delivery

e-Delivery Passwords Retail Phishing

Retailers Face Many Challenges, Data Security Doesn’t Have to be One of the Them

Thales Cloud Protection & Licensing

SEPTEMBER 24, 2019

Retailers and shoppers are leveraging and enjoying many benefits data sharing brings: loyalty programs, personalized experiences, easier product location and ordering, online shopping, mobile access and the list goes on. However, this shopping ease and bliss also unintentionally opens up some risks that could be avoided.

Retail

Retail Digital transformation Security Encryption

MY TAKE: How digital technology and the rising gig economy are exacerbating third-party risks

The Last Watchdog

APRIL 24, 2019

Accounting for third-party risks is now mandated by regulations — with teeth. Allen is a widely respected thought leader on this topic, having launched Shared Assessments in 2005 as an intel-sharing and training consortium focused on third-party risks. That out of the way, business can proceed with less risk.

Risk

Risk IoT Digital transformation Retail

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

Thales Cloud Protection & Licensing

NOVEMBER 5, 2024

Holiday Shopping Readiness: How is Retail Data Security Holding Up? Retailers have been prepping for this season all year and are ready to provide a safe, secure, and seamless customer shopping experience. According to the National Retail Federation (NFR), retail sales during 2024 will grow between 2.5%

Retail

Retail Security Data breaches Compliance

The Future of Payments Security

Thales Cloud Protection & Licensing

JANUARY 26, 2021

The Future of Payments Security. The Verizon DBIR 2020 report indicates that financially motivated attacks against retailers have moved away from Point of Sale (POS) devices and controllers, towards web applications. Figure 1: Web application breaches in the Retail industry. Securing digital transactions.

Security

Security Retail Authentication Big data

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

Security Affairs

MAY 10, 2022

“Frappo” acts as a Phishing-as-a-Service and enables cybercriminals the ability to host and generate high-quality phishing pages which impersonate major online banking, e-commerce, popular retailers, and online-services to steal customer data. Detailed analysis of the Phishing-As-A-Service Frappo is available here: [link]. Pierluigi Paganini.

Phishing

Phishing Retail Financial Services Data breaches

Retailers increase cyber security spending, but attacks continue to rise

IT Governance

APRIL 3, 2019

The UK’s biggest retailers are spending more than ever on cyber security but are continuing to see an alarming rise in cyber attacks and data breaches due to the ever-evolving threat landscape, a report has found. Are retailers investing wisely? What are the biggest threats? Where can you start?

Retail

Retail Security Data breaches Government

MY TAKE: New ‘cyberthreat index’ shows SMBs cognizant of big risks, ill-prepared to deal with them

The Last Watchdog

MAY 2, 2019

Small and midsize businesses — so-called SMBs — face an acute risk of sustaining a crippling cyberattack. This appears to be even more true today than it was when I began writing about business cyber risks at USA TODAY more than a decade ago. I had the chance at RSA 2019 to discuss the SMB security landscape at length with Gill.

Risk

Risk Cybersecurity Passwords Ransomware

Grayfly APT uses recently discovered Sidewalk backdoor

Security Affairs

SEPTEMBER 10, 2021

Security researchers from Broadcom’s Symantec linked a previously undocumented backdoor to the Chinese Grayfly operation. In late August, ESET researchers uncovered the SideWalk backdoor that was employed by the Chine cyberespionage group in an attack aimed at a computer retail company based in the U.S. Pierluigi Paganini.

Retail

Retail Risk Security IT

You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results

Krebs on Security

APRIL 29, 2022

In a blog post on Wednesday , Google’s Michelle Chang wrote that the company’s expanded policy now allows for the removal of additional information that may pose a risk for identity theft, such as confidential log-in credentials, email addresses and phone numbers when it appears in Search results.

Search queries

Search queries Retail Government Marketing

Solid Data Security: The Foundation of a Safe Digital World

Thales Cloud Protection & Licensing

OCTOBER 16, 2024

Solid Data Security: The Foundation of a Safe Digital World madhav Thu, 10/17/2024 - 04:58 It’s that time of year again. This year’s theme, “Secure Our World,” encourages people to safeguard the digital assets that are instrumental to their personal and professional lives. A host of threats continue to put enterprise data at risk.

Security

Security Encryption Data breaches Cybersecurity

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Security Affairs

FEBRUARY 3, 2020

L inear eMerge E3 smart building access systems designed by N ortek Security & Control (NSC) are affected by a severe vulnerability (CVE-2019-7256) that has yet to be fixed and attackers are actively scanning the internet for vulnerable devices. ” reads the advisory p ublished by Applied Risk. Pierluigi Paganini.

Access

Access Passwords Risk Retail

How Card Skimming Disproportionally Affects Those Most In Need

Krebs on Security

OCTOBER 18, 2022

When a participant uses a SNAP payment card at an authorized retail store, their SNAP EBT account is debited to reimburse the store for food that was purchased. ” The woman profiled in Smith’s story contacted all of the retailers where her EBT card was used to buy thousands of dollars worth of baby formula. banking system.

Retail

Retail Libraries IT Risk

Fashion retailer Forever 21 data breach impacted +500,000 individuals

Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach

Webinars

Trending Sources

Volvo retailer leaks sensitive files

Webinars

American retailer Guess discloses data breach after ransomware attack

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Online Retailer LightInTheBox exposes unsecured DB containing 1.3TB of web server logs

Managing Asset Risks During Healthcare M&As

FTC Bans Rite Aid From Using Facial Recognition Tech

Nedbank client data compromised in security breach at third-party provider

Passwordless Authentication without Secrets!

FBI Raids Chinese Point-of-Sale Giant PAX Technology

4 Industries That Have to Fight the Hardest Against Cyberattacks

Security Affairs newsletter Round 403 by Pierluigi Paganini

Retail in 2019 needs security precautions

Are Retailers Shopping for a Cybersecurity Breach?

LockBit group falsely claimed the hack of the Federal Reserve

Multiple Retailers Sued Under CCPA for Sharing Data Used to Identify Fraudulent Returns

Cybercriminals Accelerate Online Scams During Ramadan and Eid Fitr

Cosmolog Kozmetik Data Breach: Hundreds of Thousands of Customers impacted

The North Face website suffered a credential stuffing attack

Global Scamdemic: Scams Become Number One Online Crime

Bluetooth Overlay Skimmer That Blocks Chip

Oracle Critical Patch Update for January 2022 will fix 483 new flaws

Hacker who reported a flaw in Hungarian Magyar Telekom faces up to 8-years in jail

GUEST ESSAY: Here’s why penetration testing has become a ‘must-have’ security practice

A Chief Security Concern for Executive Teams

Google: Security Keys Neutralized Employee Phishing

News alert: Beazley reports on how AI, new tech distract businesses as cyber risk intensifies

Sports retail giant Decathlon leaks 123 million customer and employee records

New Data Covers How the Retail Market is at Greater Risk of Industry-Specific Cyberthreats

Attack of drones: airborne cybersecurity nightmare

FBI warns of crooks targeting online shoppers during the holiday season

Retailers Face Many Challenges, Data Security Doesn’t Have to be One of the Them

MY TAKE: How digital technology and the rising gig economy are exacerbating third-party risks

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

The Future of Payments Security

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

Retailers increase cyber security spending, but attacks continue to rise

MY TAKE: New ‘cyberthreat index’ shows SMBs cognizant of big risks, ill-prepared to deal with them

Grayfly APT uses recently discovered Sidewalk backdoor

You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results

Solid Data Security: The Foundation of a Safe Digital World

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

How Card Skimming Disproportionally Affects Those Most In Need

Stay Connected