Macy’s recently became the latest major retailer forced to inform its customers that their data had been exposed by another cyberthreat. Although detected by a third-party security tool, the cybercrooks still gained access to data from customers who had shopped on the retail store’s website.
This incident is the latest in years of retail data breaches that remind merchants about the importance of maintaining compliance with the Payment Card Industry Data Security Standard (PCI DSS).
According to the recent Verizon 2018 Data Breach Investigations Report, phishing remains the top method of cybercriminals, accounting for 93% of all breaches, which continue to be conducted predominantly over email. Worse yet, 68% of the breaches examined by Verizon took months or longer to detect.