Hackers are Silently Piercing Through Retail Organizations

The coronavirus epidemic has caused a sudden shift to online shopping. Taking advantage of this boom, attackers are regularly attempting to break into the infrastructure of retail organizations.

Deadly tricks

Some attackers were observed using acute techniques to infiltrate the usual defense layers of online retail stores. 
  • Recently, Brendon Gyermekáruház Kft, a baby clothes store in Hungary, was affected by a cyberattack.
  • During the attack, the attackers used Zeppelin-like software, which also penetrated the firewall and the antivirus system.
  • Due to the attack, online shopping and user accounts became inaccessible, which raises questions against the security of the widely exposed networks of retail businesses.

Other recent attacks

Last month, Subway UK disclosed that some hackers had targeted a system used for marketing campaigns, and used it to send TrickBot malware-laden phishing emails to its customers.
  • Around the same time, scammers were observed spoofing Target's Gift Card balance checking the page to lure victims.
  • Viandes Dubreton, the Canadian producer and distributor of meat products, revealed that its servers were affected by a cyber attack.
  • Premier Kids Care, the Georgian Therapy Center for kids, disclosed that it was targeted by a cyberattack when an unauthorized actor had gained access to its PKC systems.
  • Designer Brands Inc., the Columbus-based retailer, disclosed that a vendor was hit with a ransomware attack, after which it had to shut down its systems.
  • Kmart, the U.S. department chain store, suffered a ransomware attack that impacted its back-end services.

Stay safe

The use of attack tactics against the existing security layers has further deepened the risks already faced by retail organizations. Retail organizations are recommended to keep their infrastructure, including their POS environment and customer-facing systems, patched with all the latest updates. Also, experts recommend using robust protection against spam emails and phishing attacks.

Cyware Publisher

Publisher

Cyware