A study conducted by KPMG last fall found that a growing number of consumers are leery of breaches and the loss of data privacy. As Forbes stated:
More than a quarter (27%) of the 1,400 U.S. consumers surveyed in November by KPMG said they would only shop at a store that previously experienced a cyber attack if they could not find the product elsewhere — with 8% refusing to shop at these stores at all.
Consumers have a reason to be concerned. Last holiday shopping season, IBM revealed that attacks against retailers are growing more sophisticated and targeted, which means that while there may be fewer attacks overall, they are gathering just as much or more data.
As we approach the 2015 holiday shopping season, it is up to retailers to do everything they can to protect their customers' data privacy. It's not an easy task, as Joe Schorr, director of advanced security solutions with Bomgar, stated in an email comment:
"Retail organizations are one of the most attractive targets for data theft due to the massive amounts of credit card information they process. Tools that allow IT departments or even outside vendors to remotely access and fix manned and unmanned systems are imperative in retail, but they're also one of the retail industry's biggest security weaknesses. Hackers are constantly looking to exploit unsecure remote access methods that turn them from outside attackers to privileged insiders and gain access to sensitive data and systems."
In this slideshow, Sue Marquette Poremba has outlined a few issues experts recommend online retailers consider before we hit the busy shopping season to better ensure their security is running smoothly.
Whaling is a type of spearphishing targeting "big fish" in an organization with access to sensitive, highly-valuable information. ... More >>
Five common failures companies make when preparing for, and responding to, a data breach, as well as guidance for companies on how they can tackle these issues. ... More >>
Incorporating security capabilities such as encryption, better control and management and a data security framework will help alleviate the burden breaches place on the organization and people's lives. ... More >>