November 26, 2024 at 11:24AM CyCognito released a report highlighting security risks for ecommerce platforms during the holiday shopping season, noting increased threats to customer data. With vulnerabilities in web applications, retailers must prioritize security checks to avoid potential data breaches and disruptions. Key issues include lack of HTTPS, WAF protections, and trust certificate validity. … Read more
November 4, 2024 at 06:21AM As the holiday season approaches, retailers face increased cyber threats, especially AI-driven attacks. Imperva’s cybersecurity guide highlights issues like business logic abuse, DDoS attacks, bad bots, and API violations. To protect themselves, retailers should enhance their defenses with robust strategies for bot management, DDoS solutions, and API security measures. ### … Read more
October 22, 2024 at 05:16PM The Retail and Hospitality Information Sharing and Analysis Center (RH-ISAC) launched LinkSECURE, a program aimed at enhancing cybersecurity for vendors and reducing supply chain risks. The initiative includes support for implementing security measures, educational sessions, and resources to improve cybersecurity across the retail and hospitality sectors. ### Meeting Takeaways from … Read more
August 29, 2024 at 11:49AM DICK’S Sporting Goods, the largest US sporting goods retail chain, reported a cyberattack last Wednesday that exposed sensitive information. Based on the meeting notes, it’s clear that DICK’S Sporting Goods suffered a data breach due to a cyberattack. The breach resulted in the exposure of sensitive information. It’s essential to … Read more
August 29, 2024 at 09:48AM Retail chain Dick’s Sporting Goods disclosed a cyberattack leading to unauthorized access of confidential information. The breach was discovered on August 21, prompting activation of their response plan and engagement with security experts. The company stated no disruption to business operations. They did not disclose details on the attackers, compromised … Read more
August 28, 2024 at 12:27PM Dick’s Sporting Goods, the largest outdoor retail chain in the US, confirmed a cyberattack on its servers. The nature and extent of the stolen information are unknown. Business operations were not disrupted, indicating ransomware was not used. The company has engaged law enforcement and an external security firm to investigate … Read more
August 28, 2024 at 11:46AM DICK’S Sporting Goods, the largest sporting goods retailer in the US, suffered a cyberattack on August 21, 2024, exposing confidential information. The company, with 857 stores and over 55,500 employees, has engaged cybersecurity experts to contain and assess the breach’s impact. They’ve reported the incident to law enforcement, with no … Read more
May 23, 2024 at 02:59PM A Moroccan cybercrime group, Storm-0539, has evolved the gift card scam by targeting retailer systems to create and cash out gift cards. Utilizing social engineering and phishing, they compromise employee accounts to gain access. Microsoft reports a surge in their activity, advising organizations to adopt stringent security measures to combat … Read more
April 30, 2024 at 04:45PM Canadian pharmacy chain London Drugs temporarily closed its stores in British Columbia, Alberta, and Saskatchewan due to a cybersecurity incident, with no disclosed details or timeframe for reopening. They assure customers and employees that they’re investigating with third-party experts and suggest calling in advance for urgent pharmacy needs. Based on … Read more
April 29, 2024 at 01:20PM Canadian pharmacy chain London Drugs has closed all retail stores due to a cybersecurity incident. The company is investigating the cyberattack, and has hired external experts to assist in containment and investigation. London Drugs stated that it found no evidence of customer or employee data being impacted, and is advising … Read more