24% data breach targets retailers

Findings from Verizon's annual Data Breach Investigations Reports (DBIR) indicate 24% of the confirmed data breaches are found in retail and restaurants, the second largest sector after financial organizations.

DBIR is an annual study of global security trends through a combined effort from various global organizations. This is the sixth year of this study, where 19 global organizations including law enforcement agencies,national incident-reporting entities, research institutions and a number of private security firms contributed their findings on data breaches.

The study confirmed that 621 confirmed data breaches with 47,000 reported security incidents were identified in 2012. Among the confirmed data breaches, a total of 156 of them came from the retail environment or food services industry.

"Organized criminals love finance, retail and they love restaurants," said Paul Black, Asia Pacific Regional managing Principal Investigative Response. "The reason for that is they all have credit card terminals."

Black noted that most of these credit card terminals are available in public areas and connected to the public network. They are physically and virtually accessible to install malware for capturing credit card information.

The report also stated the correlation between attack motives, the victim industry and attack tactics. Financial motives drove most of the physical attacks, which includes skimmers inside ATMs, POS devices and gas pump terminals. Black added that most organized criminals are driven by financial motives and their technics are not very advanced, but they tend to launch targeted and calculated attacks.

He added that to protect financially motivated physical attacks, technical IT issues may not be the only way. He suggested a longer term solution which includes process reengineering and users education.

In addition, complying with PCI security standards are good best practices for retailers to be protected from physical attacks. But he added that organizations also need to update their compliance, as software and technology continue to advance.

"If people are PCI compliance they are usually fairly safe," said Black. "But different motivations are shifting the way people attack the system. It's not good enough just to tick the box, it should be an on-going process."

Join the CSO newsletter!

Error: Please check your email address.

Tags securitydata breachVerizon Communications

More about VerizonVerizon

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Computerworld Hong Kong staff

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts