Skip to main content

Tag: retail

60 articles

Cybersecurity team members respond to simulated cyber-attack in empty supermarket aisle.

Cybersecurity Teams Face Simulated Supermarket Cyber-Attack Test

Get ready to enter the war room and face off against a simulated cyber-attack in a thrilling tabletop experience, where you'll play out a high-stakes battle to protect a fictional supermarket from a multi-stage cyber threat. Join Semperis at Infosecurity Europe 2026 for a 90-minute immersive roleplaying simulation that puts your cybersecurity skills to the test.

Analyst 207
Blurred computer screen looms behind brightly-lit customer service desk in retail store.

Zara Breach Exposes Data of 197,000 Customers Worldwide

A recent data breach at a former technology provider exposed the sensitive information of 197,400 Zara customers worldwide, including email addresses, product details, and order IDs. The breach, revealed by data-breach notification service Have I Been Pwned, highlights the importance of securing customer data.

Analyst 207
Brightly-lit office lobby with a hint of unease, generic multinational company setting.

Scattered Spider Targets Global Firms with Identity-Driven Attacks

Scattered Spider is on the prowl, launching identity-driven attacks on major global firms across various industries, from retail and hospitality to telecom, insurance, and airlines. Get insider expert advice from Dr. Torsten George on how to outsmart this sophisticated cybercrime collective.

Analyst 207
Brightly-lit retail setting with a point-of-sale terminal in the foreground, hinting at unease.

BlackFile Targets Retail, Hospitality with Extortion Attacks

Meet BlackFile, a notorious extortion group wreaking havoc on the retail and hospitality sectors with high-stakes attacks, demanding seven-figure ransoms from its victims. With a modus operandi that includes impersonation and voice-phishing, this threat actor is using pressure tactics to get what they want.

Analyst 207
Person interacting with a blurred payment terminal in a retail setting.

BlackFile Group Launches Vishing Attacks on Retail, Hospitality Firms

Retail and hospitality firms are under siege from a financially motivated threat group, known as BlackFile Group, that's launching vishing attacks to extort money, with a campaign that has been quietly escalating since February 2026. This persistent threat uses no custom malware, making it a stealthy and formidable foe.

Analyst 207
Retail customer service desk with blurred computer screen nearby in daytime setting.

BlackFile Targets Retail with Vishing Extortion Tactics

Meet BlackFile, a financially motivated group that's been wreaking havoc on retail and hospitality organizations with a clever vishing extortion tactic, posing as IT support staff to steal data since February 2026. They're using spoofed VoIP numbers and fake Caller ID names to pull off their scams.

Analyst 207
Crims Shocking $20M ATM Malware Heist Causes Costly Loss

Crims Shocking $20M ATM Malware Heist Causes Costly Loss

ATM malware jackpotting gangs walked away with more than $20 million last year, and with the FBI warning these cyber‑physical heists are on the rise, its time for banks, retailers—and everyday customers—to rethink how secure the cash we carry really is.

Analyst 207
Toys R Us Canada Exclusive: Customer Data Stolen Online

Toys R Us Canada Exclusive: Customer Data Stolen Online

What happens when a beloved store feels less safe? Toys R Us Canada says attackers accessed a customer database and posted some personal information online—reportedly not payment card numbers or passwords—leaving tens of thousands of Canadians worried as the investigation continues and no credit monitoring has been offered yet.

Analyst 207
Darkened scene with broken toy robot, shattered devices, and ominous laptop screen hinting at data breach consequences.

Toys R Us Canada Exclusive: Severe customer data breach

Toys R Us Canada customers woke up to a troubling disclosure: an unauthorized party accessed and published parts of a customer database, exposing names, contact details and some payment-related fields. The company’s response—without offering free credit monitoring—has left shoppers and privacy advocates demanding answers.

Analyst 207
Askul ransomware attack: Stunning, Risky supply-chain hit

Askul ransomware attack: Stunning, Risky supply-chain hit

When Muji paused online orders after logistics partner Askul was hit by ransomware, it exposed a stark truth: a single third-party breach can freeze entire retail operations. This outage is a wake-up call for brands to map dependencies, tighten vendor security, and treat supply-chain risk as an ongoing priority.

Analyst 207
major cyberattack: Shocking £206m Loss — Risky Fallout

major cyberattack: Shocking £206m Loss — Risky Fallout

After a major cyberattack forced the Co-op to isolate critical systems, the group now expects a £206m revenue hit — a sharp reminder that containing a breach can protect customers but comes with steep commercial costs.

Analyst 207
cybersecurity breach: Stunning Costly Hit to Co-op

cybersecurity breach: Stunning Costly Hit to Co-op

The Co-op says a cyberattack flipped forecast profits into an estimated £80m loss, leaving shelves bare and staff scrambling. It’s a sharp reminder that when retail systems fail, customers, workers and company coffers all pay the price.

Analyst 207
ClickFix lures: Must-Have Critical Warning

ClickFix lures: Must-Have Critical Warning

DPRK-linked hackers are swapping code-focused bait for ClickFix-style tickets that trick marketing and trading teams into installing BeaverTail and InvisibleFerret malware, putting funds and customer systems at risk. It’s a wake-up call to treat phishing as a financial-security issue—tighten email defenses, role-based access, and training beyond engineering.

Analyst 207
live facial recognition: Risky Exclusive Retail Trial

live facial recognition: Risky Exclusive Retail Trial

Sainsbury’s is trialling live facial recognition in two stores to catch repeat shoplifters, promising reduced losses and safer staff—but privacy advocates warn it’s intrusive, error-prone and could normalize constant surveillance. Will a few prevented thefts justify scanning shoppers’ faces, or will public concern and regulation redraw the line?

Analyst 207
GDPR shoplifters photos Risky Warning — Must-Read

GDPR shoplifters photos Risky Warning — Must-Read

The U.K.’s ICO warns that sharing photos of suspected shoplifters can breach GDPR and unfairly tarnish people before guilt is proven. Retailers need to balance crime prevention with privacy rights and legal risk.

Analyst 207
Click & Collect Must-Have Comeback Brings Relief

Click & Collect Must-Have Comeback Brings Relief

Good news — M&S has restored Click & Collect so shoppers can get back to the quick, convenient pickups they rely on; some online services remain down, but the retailer is working on fixes and stronger security.

Analyst 207
Click & Collect Service: Must-Have, Restored but Risky

Click & Collect Service: Must-Have, Restored but Risky

M&S has reopened Click & Collect, so customers can get back to the convenient, cost-savvy shopping they love. But with some services still lagging after the cyber attack, rebuilding trust and boosting security is now essential.

Analyst 207
Retail cybersecurity threats: Essential Best Defenses

Retail cybersecurity threats: Essential Best Defenses

Retailers are now prime targets for attacks on payment systems, customer data, and supply chains — this guide explains why the risk is rising and gives practical, prioritized defenses you can implement now to protect revenue, reputation, and customers.

Analyst 207
Global Retail Ransomware Attacks Surge 58% in Q2 2025

Global Retail Ransomware Attacks Surge 58% in Q2 2025

Ransomware attacks on global retailers skyrocketed 58% in Q2 2025, spotlighting a growing cyber threat that’s shaking checkout lines and boardrooms alike—especially across the UK. Is your favorite store ready to fight back?

Analyst 207
Four Arrested in £440M Cyber Attack Targeting UK Retail Giants

Four Arrested in £440M Cyber Attack Targeting UK Retail Giants

Four individuals have been arrested for orchestrating a sophisticated cyber attack that compromised payment systems at major UK retailers, inflicting £440 million in damages and exposing critical vulnerabilities in national digital security. This alarming breach underscores the urgent need for retailers to modernize defenses against rapidly evolving cyber threats.

Analyst 207
5 Strategies to Combat Identity-Based Attacks in Retail

5 Strategies to Combat Identity-Based Attacks in Retail

Discover 5 effective strategies to protect your retail business from identity-based attacks and safeguard customer data.

Analyst 207
Counterfeit Alert: Fake Chinese Websites Imitate Retail Brands

Counterfeit Alert: Fake Chinese Websites Imitate Retail Brands

Stay vigilant against counterfeit scams as fake Chinese websites mimic popular retail brands, putting your purchases and personal info at risk.

Analyst 207
Cyberattack Exposes Data of 2.2 Million Customers at Ahold Delhaize

Cyberattack Exposes Data of 2.2 Million Customers at Ahold Delhaize

Cyberattack exposes personal data of 2.2 million Ahold Delhaize customers, raising concerns over security and privacy measures.

Analyst 207
Supermarket Chain Introduces Facial Recognition Technology for Frozen Foods

Supermarket Chain Introduces Facial Recognition Technology for Frozen Foods

Supermarket chain enhances shopping experience with facial recognition technology for frozen foods, streamlining purchases and ensuring product availability.

Analyst 207