Data Security

The transition to PCI DSS 4.0 is a substantial advancement in payment security standards and reflects a shift towards a more flexible and scalable approach to compliance. It will help organizations accommodate the diverse needs within the payments ecosystem. But perhaps your organization has struggled to find the best ways to meet these new requirements.…

With the widespread use of web trackers like TikTok, the Meta pixel, and web monitoring tools capturing session data, protecting customer data and ensuring compliance has never been more crucial. Additionally, rapidly evolving state and federal privacy laws have made web privacy compliance quite complicated. This article explores the top four web privacy challenges facing…

Credential stuffing attacks are a costly headache, with the Ponemon Institute finding that businesses lose an average of $6 million per year due to lost customers, increased IT costs, and other fallouts. The pervasive problem of password reuse fuels credential stuffing, and we can only expect these attacks to increase as more credentials are exposed…

Navigating the data privacy landscape these days can be daunting, particularly with the continual emergence of new state and federal regulations. We now have 13 state laws signed, and many others to come online in the next year, not to mention sector-specific laws. These have led to hundreds of lawsuits and enforcement actions. Given that…

VF Corp., the parent company of popular apparel brands Vans, Supreme, and The North Face, said last week that hackers stole the personal data of 35.5 million customers in a December cyberattack, reports TechCrunch. The filing to regulators didn't say specifically what kinds of personal data was taken, or if the company yet knows what…

On Monday, VF Corporation, the U.S.-based owner of apparel brands including Vans, Supreme, and The North Face, confirmed a cyberattack has impacted the company’s ability to fulfill orders ahead of Christmas, reports TechCrunch. The company first detected the attack on Dec. 13, according to a filing with federal regulators. Hackers disrupted the company’s operations “by…

This holiday season, U.S. online sales are projected to grow nearly 5 percent over last year’s numbers, which is good news for retailers hoping to close out the year with a strong Q4. Unfortunately, cybercriminals are targeting retailers with growing regularity. During the holiday season, any website downtime or service outage can result in significant…

In the retail industry, customer data is a prized possession. It’s the lifeblood that fuels personalized marketing and tailored experiences. However, this treasure trove of information also makes retailers prime targets for cyberattacks. The ongoing battle to safeguard this sensitive data is a constant struggle, especially during the high-stakes holiday season. The consequences of these…

Staples announced Monday it had been hit by a cyber attack during the week following Thanksgiving that temporarily disrupted customer support channels and delivery systems. “Staples recently identified a cybersecurity risk [and] took proactive steps in an effort to mitigate the impact and protect customer data," the company said on its website. PC Magazine reported…

Generative artificial intelligence (GenAI) is the next big thing for retail. With 92 percent of retailers planning to increase AI investments next year, leading brands like Walmart are already rolling out GenAI assistants to help customers with purchases. The possibilities for GenAI are endless, but they create new risks for data breaches that everyone needs…