More Than Half: The Story of Cyber-Attacks and Global Organizations in 2017
Three words. It might not seem enough to cause a rethink of your 2018 cyber-security strategy, but it should. Why? Because according to the latest Forrester report, “Top Cybersecurity Threats for Retailers in 2018,” attackers breached more than half of all global enterprises in 2017.
More. Than. Half.
With cyber-criminals enjoying that level of success, you can be sure that cyberthreats will not slow down any time soon. To best protect yourself (and join the select group of organizations that are not breached), it’s important for retailers to first understand three key takeaways from Forrester’s report:
- Omni-channel functionality is becoming a ‘must have,’ but it also increases the surface area for attackers to exploit.
- Ransomware is the fastest growing malware threat, and retailers must guard against an attack on their essential technology, such as POS systems.
- Considering the sheer number of organizations that are impacted by breaches, having a committed, thorough response plan prepared in advance is essential.
With these takeaways in mind, it’s worth considering the active role retailers must take in protecting their own organizations as well as customers. It might seem a daunting task, but a good place to start is to review these top five emerging threats faced by all retailers, and how best to prevent them.
- Omni-channel Fulfillment Capabilities: A Gift to Your Customers… and Hackers – Customers want better experiences, less friction and the ability to pay the way they choose. Unfortunately, they also expect that retail merchants keep them safe. Retailers must train in-store staff to act as guardians of merchandise and information, with a strict verification policy put in place and enforced. Secret shoppers can be a great way to test the strength of this system.
- Another Company’s Breach Could Become Your Problem – When another organization is breached, the stolen data can create a ripple that engulfs your organization. Criminals with access to compromised accounts can commit fraud, which can cost you in real dollars and brand equity. The intelligent use of friction, that is, adding verification, or monitoring customer data for fraud and insights about unusual activity, can limit the impact of compromised accounts (and keep you out of the headlines).
- Non-Card-Based PII Data: The Hacker Magnet – Personalization is a tremendous tool, but for it to be effective you must first have a wealth of personalized identity information (purchase history, demographic profile, Wi-Fi history, etc.). And guess who would love to have drivers’ license numbers, social security numbers and cell phone data? Hackers throughout the world. Retailers must treat this information as the lifeblood of their organization, because in many ways, it is. Tokenize, encrypt and restrict access to this information.
- Ransomware is Holding the Digital World Hostage – Ransomware has quickly become the hacker’s new best friend, with Forrester reporting more than 4,000 attacks have occurred daily since January 1, 2016. If successful, hackers can potentially disrupt an entire operation (imagine that on Black Friday), so security teams must develop an incident response plan to ensure that any downtime is limited.
- Protecting Your Brand Offline – Unfortunately, the odds are that the majority of organizations will be breached. If this happens, you must respond in a way that shows customers you care. Being upfront and transparent about a breach, its impact and your plans to remediate the situation will go a long way toward rebuilding the relationship with your customers. Have this plan in place so you’re not scrambling to react should a breach occur.
Want to avoid joining the “More Than Half”? Visit booth #2753 at NRF Retail’s Big Show, New York City, Jan 14-16 to talk to our experts about cybersecurity and find out how you can receive a complimentary copy of the full Forrester report.
Related Blog Posts
The Mexican Fintech Revolution – ¿Qué onda in Open Banking?
Mexico has joined an elite group of nations, being amongst the first to pass open banking regulations. Specifically designed to open up its financial services and technology sector, the so-called ‘Fintech Law’ appears to have taken notes from PSD2, UK Open Banking, Singapore’s ‘organic’ approach, and others – and balances these against Mexico’s unique context and aims.
ACI’s Lu Zurawski, one of the industry's foremost open payments experts, and Sonia Gomez, a Latin America payments authority, discuss this balancing act; including the drivers, the regulation and the potential benefits.
Working Up An Appetite for APIs in Australia
This week ACI hosted the latest installment of our #paymentsforbreakfast forums in Australia, with the early birds catching the open banking worm in both Sydney and Melbourne.
Given the similarities between the Australian and UK open banking movements, we enticed ACI’s UK-based Lu Zurawski (Solutions Practice Lead - Retail Banking) to Australia to share his learnings from being heavily involved in the UK Open Banking working group.
APIs and Cash Management (Harnessing the Hammer, Part 2)
In my last blog post, we talked about the hammer and the nail; the hammer in this case being open APIs, and the nail being the market need to adapt to changes in customer behavior and expectations from our commercial market. We laid out why the US is in a different position when it comes to open APIs—it has to do entirely with the regulatory environment, which is allowing us to start with the largest revenue opportunity first. Finally, we challenged you, the reader, on how you can begin on your journey. And that is where we are going to pick things up. What steps can you take today, and what use cases can you explore as we start getting our hands dirty?
Three Key Takeaways from the Latest Payments Insight Survey
Blinkist is a reading app that summarizes books into 15-20 minute reads; these reads are called “blinks.” It’s helpful for a few reasons – I can scan books before I purchase them, I can get new ideas without having to read the full book, and I can learn to summarize information. It’s safe to say that I (and probably many who are strapped for time) are a little obsessed with Blinkist! So here I present my own summary – in three key takeaways – of the new ‘2018 Global Payments Insight Survey: Retail Banking,’ which finds that 51% of banks are increasing spend on payment technology.
The Hidden Cost of Digital Payments for Retail Payment Players
It is not exactly breaking news that non-cash payments are on the rise globally, with column inches dedicated to the launch of digital financial-inclusion projects. But going cashless is not only a challenge for humanitarian endeavors, or developing countries. We all agree that removing cash from the system will save payments players big bucks in the future, but we must also consider the immediate impact of digital transformation on the legacy infrastructure of the powerhouses of the payments ecosystem.
Why User Engagement Matters, Even for Enterprise Applications
As a User Experience Designer at ACI, I spend a lot of time watching users interact with my designs. I need to make sure our solutions work properly, but lately I’m more interested in how they make my users feel. Engagement is a dominant concept in user interface design right now. It’s important because positive emotional experiences often lead to increased use and loyalty.
Five Payments Trends to Watch in 2018 [Part 1]
2018 is set to be a year of rapid change and new challenges for payments players. The floodgates are opening with PSD2 and UK Open Banking coming into force, bringing an onslaught of new competitors and potential partners. Whether evolution is mandated or market-driven, banks and processors are facing a critical year in their long-term success.
Five Payments Trends to Watch in 2018 [Part 2]
The New Payments Ecosystem Is Here. The floodgates are opening with PSD2 and UK Open Banking coming into force, bringing an onslaught of new competitors and potential partners. Whether evolution is mandated or market-driven, banks and processors are facing a critical year in their long-term success.
Open Banking Goes Live: The Walls Around Traditional ‘Old Style Banking’ Are Crumbling Down
January 13, 2018 may well be remembered as the ‘beginning of the end’ of the traditional retail banking industry.
Thanks to a profound set of new rules by European regulators and the UK government, we may see the start of an era where consumers no longer hesitate to change their bank accounts or make more personalized arrangements with regards to their finances.
The Bank of the Future: 2040 and the Reality of Ar and Vr
Mark, when I envision the bank of the future, I imagine Twiki and Buck Rogers at a casino. Or maybe I once dreamed that—I’m old and my mind is going. So what are we talking about and what can we envision when it comes to the bank of the future? And by future, I’m talking about 2040, before certain cities might be flooded (by water). But I digress, as this isn’t a post about climate change.