Retail Security - Security Intelligence

Man entering credit card information on a laptop: IcedID

article

IcedID Operators Using ATSEngine Injection Panel to Hit E-Commerce Sites

The X-Force research team investigated the IcedID Trojan's two-step injection attack that enables it to steal access credentials and payment card data from e-commerce customers in North America.

February 6, 2019 | By Itzik Chimino

article

Woman using a laptop and smartphone while looking at a credit card: multifactor authentication

article

Multifactor Authentication Delivers the Convenience and Security Online Shoppers Demand

When framed as an innovative, even "cool" feature, multifactor authentication can deliver the security online retail customers demand without diminishing the user experience.

January 21, 2019 | By Pier Luigi Rotondo

article

Woman using a credit card at a retial POS terminal: PCI compliance

article

The Gift That Keeps on Giving: PCI Compliance for Post-Holiday Season Returns

Holiday spending is on the rise both in-store and online. How can retailers ensure PCI compliance to manage large transaction volumes and post-holiday refunds?

January 3, 2019 | By Douglas Bonderud

article

Woman shopping online with her credit card: JavaScript attack

news

Magecart Group’s Use of Credit Card-Skimming JavaScript Attack on the Rise

An online retailer was hit by a JavaScript attack from a group associated with Magecart, a collective of cybercriminals that specializes in skimming credit card numbers from compromised websites.

December 14, 2018 | By Shane Schick

news

A restaurant worker using a laptop: macro downloaders

news

New Macro Downloaders Use PUB Files to Compromise Food and Retail Companies

New macro downloaders are sandwiching spam and .PUB files to compromise businesses in the food and retail sector.

December 7, 2018 | By Douglas Bonderud

news

A couple using a credit card to purchase goods online: retail cybersecurity

article

5 More Retail Cybersecurity Practices to Keep Your Data Safe Beyond the Holidays

These five retail cybersecurity tips will help organizations mitigate cyberattacks and provide customers with the safest shopping experience during the holiday season.

December 6, 2018 | By David Bales

article

Illustration of shopping bags hanging from fish hooks representing retail cybersecurity.

article

5 Recommendations to Improve Retail Cybersecurity and Revenue This Holiday Season

With extra web traffic and high order volumes coming in, the holiday shopping season can be a particularly perilous time for retail cybersecurity.

November 29, 2018 | By David Bales

article

A woman using a credit card to make an online purchase: retail industry

article

Customer Experience Priority Drags Retail Industry Cybersecurity Below Benchmarks

A recent survey found that the retail industry is among the least secure industries. What can retailers do to turn that around this holiday season?

November 28, 2018 | By Joan Goodchild

article

A woman using a smartphone to make an online purchase: security hygiene

article

Retail Security Hygiene: The Case for Seasonal Checkups

Retail companies should conduct security hygiene checkups as early as possible this holiday season to identify key threats across e-commerce systems, seasonal staffing policies and employee behaviors.

November 27, 2018 | By Douglas Bonderud

article

Illustration of a person purchasing items online during Cyber Monday 2018.

article

Cyber Monday 2018: 5 Best Practices to Protect Consumer Data

Cyber Monday 2018 is just around the corner, and customers and malicious actors alike are gearing up. Is your retail security ready to tackle e-commerce fraud and improve consumer data protection?

November 21, 2018 | By Douglas Bonderud

article

Fraudsters Abuse Smartphone Google Calendar Feature to Push Through Scam Offers

Latest Mirai Malware Variant Contains 18 Exploits, Focuses on Embedded IoT Devices

Extortion Scam Threatens Website Owners With Reputational Damage

Attack Campaign Exploits CVE-2019-2725, Abuses Certificate Files to Deliver Monero Miner

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Observations of ITG07 Cyber Operations

Getting Quantum Ready and What This Means for Cryptography

HawkEye Malware Operators Renew Attacks on Business Users

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Podcast: Travel Security: Why Data Safety Doesn’t Get a Day Off

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Webinar: Under the Radar: IBM QRadar Demo Series

Webinar: Appliance Networking Topics

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Tag: Retail Security

IcedID Operators Using ATSEngine Injection Panel to Hit E-Commerce Sites

Multifactor Authentication Delivers the Convenience and Security Online Shoppers Demand

The Gift That Keeps on Giving: PCI Compliance for Post-Holiday Season Returns

Magecart Group’s Use of Credit Card-Skimming JavaScript Attack on the Rise

New Macro Downloaders Use PUB Files to Compromise Food and Retail Companies

5 More Retail Cybersecurity Practices to Keep Your Data Safe Beyond the Holidays

5 Recommendations to Improve Retail Cybersecurity and Revenue This Holiday Season

Customer Experience Priority Drags Retail Industry Cybersecurity Below Benchmarks

Retail Security Hygiene: The Case for Seasonal Checkups

Cyber Monday 2018: 5 Best Practices to Protect Consumer Data