Report: Most data security incidents follow nine basic patterns
New York – Nine basic attack patterns that vary from industry to industry are the source of 92% of the 100,000 security incidents analyzed by Verizon since 2004. This finding from Verizon’s “2014 Data Breach Investigations Report,” identifies the nine threat patterns as miscellaneous errors such as sending an email to the wrong person; crimeware (various malware aimed at gaining control of systems); insider/privilege misuse; physical theft/loss; Web app attacks; distributed denial of service (DDoS) attacks; cyberespionage; point-of-sale intrusions; and payment card skimmers.
In the retail sector, the majority attacks are tied to DDoS (33%), which are attacks intended to compromise the availability of networks and systems so that, for example, a website is rendered useless, followed by point-of-sale (POS) intrusions (31%).
Other key findings in the report include:
- Cyber-espionage is up again in the 2014 report, representing a more than three-fold increase compared with the 2013 report, with 511 incidents partially due to a bigger dataset. As it did in 2013, China still leads as the site of the most cyberespionage activity; but the other regions of the world are represented, including Eastern Europe with more than 20%.
- The use of stolen and/or misused credentials (user name/passwords) continues to be the number one way to gain access to information. Two-out-of-three breaches exploit weak or stolen passwords, making a case for strong two-factor authentication.
- Retail POS attacks continue to trend downward, exhibiting the same trend since 2011. Industries commonly hit by POS intrusions are restaurants, hotels, grocery stores and other brick-and-mortar retailers, where intruders attempt to capture payment card data.
- While external attacks still outweigh insider attacks, insider attacks are up, especially with regard to stolen intellectual property. The report points out that 85% of insider and privilege-abuse attacks used the corporate LAN, and 22% took advantage of physical access.
“After analyzing 10 years of data, we realize most organizations cannot keep up with cybercrime, and the bad guys are winning,” said Wade Baker, principal author of the Data Breach Investigations Report series. “But by applying big data analytics to security risk management, we can begin to bend the curve and combat cybercrime more effectively and strategically."
RadioShack store ops exec resigns
Fort Worth, Texas – Troy Risch, executive VP of store operations at RadioShack Corp., has resigned to pursue other unspecified interests. The resignation is effective April 18, and his duties will be temporarily taken over by other executives.
Risch joined the company in December 2012. RadioShack is currently in the process of closing 1,000 stores. He previously spent 19 years at Target Corp. No timetable has been given to hire a permanent replacement.
Barneys deploys iPad app as part of its continuing digital strategy
Barneys New York has launched an iPad app that offers consumers improved shopping functionality as well as relevant and exclusive content.
New functions on the app include a Personal Shopping scheduling tool, which Barneys touts as the first of its kind for a luxury retailer. Created in partnership with mobile development and design firm Fueled, the app is now available for complimentary download through the Apple iTunes store.
"From the app’s daily shoppable features, videos and interviews to the ability to schedule in-store personal shopping appointments, this app sets a new standard for omnichannel luxury on the iPad," says Matthew Woolsey, EVP, digital at Barneys New York. "We’re very excited to give our customers this kind of content, access and inspiration as part of a tool that connects their online and in-store engagement."
The new app will incorporate shoppable content from The Window, the Barneys.com luxury editorial site, which is updated daily with exclusive stories including interviews with the people from the most celebrated design houses, trend stories, beauty features from exclusive brands and a behind-the-scene look at the Barneys team.
App content will highlight the dynamic Madison windows, key advertising and marketing campaigns and exclusive brand launches. It will also highlight specially curated products and designer products that are “Exclusively Ours.” All exclusive merchandise is tagged with the Exclusively Ours (XO) icon making it easy to filter and locate exclusive product when sorting by collection or by our curated look books.
"Barneys is a fashion brand that truly understands mobile," said Rameet Chawla, founder of Fueled. "We worked closely with their team to deliver an app with remarkable design and ecommerce functionality, and this launch represents just the first step on an impressive roadmap for the months ahead."
Additionally, accounts will be synchronized, allowing users to use a Barneys.com login and share features such as Favorites, Most Loved and My List, across the app and the website. The app will use push notifications to alert users about new products from brands they favor, designer launches, sales and other key announcements.
Other significant functionality additions include a mobile scheduler, which will allow users to directly schedule a consultation with a Personal Shopper and the ability to work in advance on preferences and shopping needs. This unique feature will launch in the Madison Avenue flagship store and roll out throughout the next year to the other stores and areas of business.
The new app is part of the continued redesign of the site. Beginning in February 2011 with the launch of The Window, the redesign continued with the implementation of new interactive and social features, shoppable lookbooks and videos, the launch of the HTML5 mobile site along with many improved site features and functionality enhancements.