By Callie Guenther, CRITICALSTART
Retailers solicit most fervently on a handful of days throughout the year. Valentine’s Day, Mother’s Day, Independence Day, Back-to-School, and Halloween all bring in huge profits across the industry. Yet nothing quite compares to the most wonderful time of the year: Thanksgiving Day to Cyber Monday, which have become the biggest shopping days. In a recent survey by the National Retail Federation (NRF), consumers say they will spend an average of $1,047.83 this holiday season, up 4 percent from the $1,007.24 they said they would spend in 2018.
Yet even as holiday-shopping season kicks into high gear, holiday cheer isn’t the only thing spreading far and wide. The holiday shopping season represents a range of cybersecurity risks to retailers and their stakeholders. Accordingly, there are essentially three levels of targeting retailers should be aware of:
While all organizations are potential targets of cyberattacks, the industries which possess the most valuable data are the biggest targets and retail is at the top of that list. There are numerous ways that retailers can disrupt and/or mitigate the activities of cybercriminals. Following these simple steps can protect the retailer, their supply chain, and their customers from falling victim to cybercrime.
The increasing number of cyberattacks via email systems, companies should increasingly conduct periodic email threat assessments targeting malware that may have made it through their antivirus and firewalls.
With the expansion of information systems, software applications, bring your own devices, and Internet of Things (IoT), testing networks and endpoints with Intrusion Detection Systems (IDS) will reduce potential vulnerabilities to cyberattacks
Some of the most significant data breaches were the result of organizations failure to implement effective and timely software patch management program of Microsoft and Cisco software.
The most cost-effective means to improve cybersecurity posture is to create a human firewall by providing quality cybersecurity educational programs to all employees and partners.
Every organization should invest in an appropriate level of MDR services based upon the cyber threats their organization encounters or anticipates. The key is to rapidly detect intrusions to quickly contain and eradicate the malware to reduce negative impacts upon the information system and data assets.
Cyberattacks are increasing in sophistication and magnitude of impact across all industries globally. Online spending is only going to continue to increase thus, criminals will continue to innovate in order to generate their own revenue. However, taking proactive precautions and fine-tuning cybersecurity programs can help protect your business, supply chain and your customers against cyberattacks this holiday season.
About The Author
Callie Guenther is a CyberSOC Data Scientist at Critical Start, a provider of Managed Detection and Response (MDR) services. Callie’s expertise in the application of data science to the cybersecurity space has helped government agencies, nonprofit organizations, healthcare organizations and the private sector prepare against cyberattacks.