Whether it’s mobile payment fiascos, PCI security changes, E-Commerce hiccups at your largest rivals or new CRM legal hurdles you now need to clear, FierceRetailIT lets you know first. Sign up for our free weekly email newsletter today!
The online photo sites of several retailers, including Costco, Sam's Club and Rite Aid, are still inoperative after being taken down more than a week ago, following a presumed hacking incident. The sites are not expected to return until early August, thus missing much of the summer photo processing season. PNI Digital Media, owned by Staples and used by several retailers to manage photo sites, is investigating the possible data breach. It is not clear whether any customer information has been taken.
Eataly's retail location in New York City has reported a possible data breach in its POS system. The company's website warns consumers of the potential security incident, urging consumers who purchased items between Jan. 16 and April 2 at the New York City location to immediately check their bank accounts. "Based upon an extensive forensic investigation, it appears that criminals unscrupulously hacked our network system and installed a malware designed to capture payment card transaction data," according to a company statement. An investigation was officially launched after several Eataly employees, who also made purchases at the store, found fraudulent charges on their credit cards, PYMNTS reported. The malware has now been removed and security measures are in place.
Cellphones, batteries and connecting cables aren't the only things up for grabs as RadioShack's going-out-of-business sale winds down. The company also has millions of customer names and emails at its disposable, and, with that information, a sizeable amount of potentially valuable consumer data.
Cisco Systems is warning of a new breed of malware technology, nicknamed PoSeidon, that targets point-of-sale systems. This is bad news for retailers that are still reeling from the many data breaches of recent history, such as those that hit Target, Home Depot, Staples and Supervalu.
Target Corp. has proposed a $10 million settlement of a class action lawsuit regarding the high-profile 2013 data breach that compromised the personal and credit card information of as many as 110 million people, according to court records.
Defending against data breaches requires an integrated data security strategy that is consistently maintained and addresses modern-day realities. Compliance alone is no longer the "gold standard," according to research just released by Vormetric. The "2015 Vormetric Insider Threat Report – Trends and Future Directions in Data Security, Retail Edition" reported that part of that strategy must be focused on trusted insiders, called "privileged users."
President Barack Obama has proposed new legislation that requires companies to notify consumers of a possible data breach within 30 days of its detection. The Personal Data Notification and Protection Act proposes, among other things, that companies must notify customers when their personal information has been exposed, including establishing a 30-day notification requirement from the discovery of a breach, while providing companies with the certainty of a single, national standard.