Retailers have always been a target for cyber criminals given their size and large quantities of online credit card transactions. Indeed, online criminals are constantly looking for new ways to breach retailers’ online security – targeting the sensitive amounts of personal data kept by retailers as well as credit card data. And given the retail industry is also dependant on high-value, readily available systems they are also an attractive target for ransomware.
The retail industry ranks among the top ten sectors most susceptible to cyber attacks, with 48% of UK retail businesses experiencing at least one cyber attack in the past year.
These statistics are similar to those found in the most recent Cyber Security Breaches Survey 2024 with 50% of businesses questioned having suffered a cyber-attack in the last 12 months.
Retailers must take steps to protect themselves and their customers in their cyber security practices. The following list provides good practice to help ensure resilience online:
- Risk assess. All retailers should classify the risk of customer data to help ensure any sensitive information such as bank details are protected.
- Spotting scams. The best defence for online crime is an educated workforce. Staff should be kept up to date with how to spot and report scams as human error remains the weakest security link across all businesses.
- Zero trust. By following the principle of ‘Never Trust, Always Verify’, employees can only access data that they are authorised to.
- Recovery plans. When a cyber-attack does occur, it can be difficult to know what to do. The NCSC Small Business Guide: Response & Recovery can help with implementation of a recovery plan. The NEBRC can also help with this. For further information contact us at: [email protected].
Sign up for our free core membership to stay up to date with the latest cyber security updates and gain access to a wealth of handy resources.
The NEBRC is an independent, police-led not-for-profit organisation that seeks to educate, inform, and support businesses in the North East, Yorkshire and The Humber regions on how to protect themselves from online crime and fraud through good cyber security practices.