Retail is Unprepared for Social Engineering

By: KnowBe4
save
Share and earn Cybytes
Facebook Twitter LinkedIn Email

The latest data from SecurityScorecard shows the retail industry’s security stance is at an all-time low, and is particularly susceptible to social engineering attacks.

The retail industry is one of a few a primary targets for cybercriminals – they rank fourth (behind financial, healthcare, and government), according to a Carbon Black report. Credit card data is accessible using RAM scrapers (the number 2 data breach method used according to the 2018 Verizon Data Breach Investigations Report).

More importantly, users at store locations can be easily phished or vished via social engineering tactics. Cybercriminals pose as a member of IT or management to take advantage of store employee’s willingness to comply with a call from “corporate”. The reason an emphasis needs to be put on social engineering is that malware (like RAM scrapers) can’t get installed without first tricking the user.

Share this post and earn Cybytes
Facebook Twitter LinkedIn Email
Follow
85 Followers
About KnowBe4
KnowBe4 is the world’s largest security awareness training and simulated phishing platform that helps you manage the ongoing problem of social engineering. The KnowBe4 platform is user-friendly and intuitive. It was built to scale for busy IT pros that have 16 other fires to put out. Our goal was to design the most powerful, yet easy-to-use platform available. Customers with businesses of all sizes can get the KnowBe4 platform deployed into production at least twice as fast as our competitors. Our Customer Success team gets you going in no time, without the need for consulting hours.
Promoted Content
Free IT Security Tools
We have developed a set of free IT security tools that all help to strengthen your network and your last line of defense against cybercrime: users. Protect yourself against phishing, malware, bad passwords, email threats and more. Try one or try them all!
View
204
Live Webinar: Counter the careless click, tools to help you train your users
Cybercriminals are successfully and consistently exploiting human nature to accomplish their goals. Employee training is tied as the third-most-effective method (higher than antivirus) of decreasing the cost of a data breach.*
Save
Share
Facebook
Twitter
LinkedIn
Email
Like
12/14/2017
70
Attackers Impersonate CEOs to Scam Employees into Sending Gift Cards for the Holidays
A crafty mix of social engineering, great timing, and context act as the perfect ingredients to trick unwitting users into buying gift cards and placing them into the hands of the attacker.
Save
Share
Facebook
Twitter
LinkedIn
Email
Like
12/01/2018

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel