Cyber ​​Security Considerations for Retailers Before Black Friday Bernard Montel – Technology Reseller

……. Tenable Technical Director and Security Strategist

Wherever there is money to make money, it is inevitable that cybercriminals are ready to take advantage of the event. And the holiday season is the perfect hunting ground. Retailers have spent months preparing for a surge in both face-to-face and online spending, attracting consumers with Black Friday and other festive promotions. Shelf and inventory can be full, but it is imperative that the technology required to complete these transactions is also at its best. That means it’s safe.

Many retailers need to manage both physical and online stores, changing their shopping habits. This allows retailers to pave the way for new risks. Online retail has become a popular target among cybercriminals and is one of the most attacked sectors.according to National Cyber ​​Security CenterVictims of online shopping scams in England and Wales lost an average of £ 775 each during the last festival.

44% of consumers Be expected To shop exclusively online during this festive season, the retail industry needs to be especially careful about data and organizational violations. Having access to a customer’s database means that criminals can send phishing emails in the guise of legitimate business, request personal information, or include malware that can damage a customer’s PC. Means.

Ransomware is another serious attack that retailers face more often during the busy seasons leading up to Black Friday and Christmas. An attacker could suspend operations until the company pays the ransom, threatening a significant loss of revenue and loss of customer confidence. According to 2021 Technology Report by Beazley, Only 32% of retail industry leaders feel ready to manage UK cyber risk.

Such attacks can seriously damage a company’s reputation, sales, and, in the case of public companies, market valuations. They can even lead to proceedings and sanctions for non-compliance. This can easily reach millions in the event of a successful ransomware attack or data breach, in addition to the significant costs of dealing with breaches, detecting and removing malware, and recovering files. there is.

In addition, physical retail stores are not affected by cyber threats. The general rise of point-of-sale CRM systems, in-store mobile devices, and e-commerce CRM platforms connected to point-of-sale, loyalty cards, and other in-store promotions all offer opportunities for cybercriminals.

How retailers strengthen cybersecurity measures

At this time of the year, many IT teams are focusing on uptime, performance, and availability to optimize retail transactions. However, security teams need to focus on designing a risk-based approach to company safety. It recognizes the systems and assets needed for a business to continue to function, keeps them healthy, and quickly identifies potential problems and weaknesses that could be exploited by attackers. Includes ensuring that patches are continuously applied, monitored, and reviewed so that they can be fixed.

In addition, to ensure that cybercriminals are not hidden within the organization’s infrastructure, retailers thoroughly evaluate back-end systems to target attackers attempting to steal consumer data. You need to identify potential vulnerable platforms. After discovering vulnerabilities or misconfigurations, retailers need to work to resolve these issues quickly. Those who do not take precautions may endanger themselves.

At peak activity, retailers usually enter a “freeze” period that leaves the system in place so as not to cause periods of inaccessibility to customers. During this time, continuous surveillance is essential to look for signs of abnormal behavior or suspicious activity. Security teams need to stay on standby and be ready to respond immediately if a critical vulnerability or attack is identified.

A commonly ignored weakness is the e-commerce platform. Given that retailers have a customer-centric focus, these are generally designed to be user-friendly, which can allow businesses to skip important security measures. For example, two-factor authentication, an effective security mechanism, is underutilized because it can be perceived as a source of friction between platforms and consumers. In fact, as shoppers become more security conscious, adding security measures rather than causing friction can be seen as a relief and proof of a brand’s commitment to its customers.

The last recommendation, which is often underestimated, is to pay attention to news reports and threat activities, especially those that affect competition. If cybercriminals are targeting another retailer, you’re almost certain to be on their radar.

During this critical retail period, you can significantly reduce the risk of cyberattacks by patching your system and using strong authentication. In addition, increased network visibility allows retailers to prioritize threats, mitigate cyber risk, enable them to thrive during the festive season, while maintaining customer safety and satisfaction.

Follow us and like us:

11 11 Cyber ​​Security Considerations for Retailers Before Black Friday Bernard Montel – Technology Reseller

Back to top button