The number of breaches has increased to unbelievable levels. All kinds of businesses, not excluding retailers, are bearing the brunt of it.
In the last year alone, 10 companies reported which were compromised due to data breaches. Most of these breaches took place due to a lacking in payment systems, be it in stores or online.
According to a recent report by Shape Security, a cybersecurity firm, 80-90% of people who logged into a retail commerce site were actually found to be hackers. This makes it the highest percentage from any sector evaluated in the report.
Apart from companies, these data breaches pose a threat to customers as well, as they tend to lose faith in brands.
A study by KPMG showed that 19% of consumers would stop shopping from retailers after a breach, while 33% of consumers would cease to shop there for a long period of time.
If you are wondering whether you are safe or not, here is a list of the companies that were compromised as a result of data breaches:
Guests that stayed at any of Marriott’s hotels in Westin, Aloft, Element, Sheraton, St. Regis and W Hotels on September 10, or before even, had their data leaked.
Data exposed included mailing addresses, email addresses, passport numbers, date of birth, phone numbers and account information. Credit card numbers, encrypted ones at that, were also leaked, with the possibility of them being decrypted.
Marriott dealt with the incident by notifying law enforcement agencies, which are investigating the breach. The regulatory authorities were notified as well. The CEO and president of Marriott apologized for the inconvenience caused.
Macy’s announced that customers shopping on their site between April and June could quite possibly be victims of data theft.
Macy’s did not exactly confirm how many people were affected by this breach, but a spokesperson stated the breach was limited to a small number of people.
Signet Jewelers owns Kay Jewelers, which suffered from a vulnerability in their website. This, in turn, exposed customers after they made a purchase online.
Customers received confirmation for their online orders with a malicious link, which allowed anyone to access information like names, billing address, shipping address, email address, phone number and so on.
The issue was resolved in November, and for orders made since then.
Cheddar’s Scratch Kitchen
Government officials informed Darden Restaurants about being a victim of a cyber attack in August.
Customers that visited Darden Restaurants’ Cheddar’s Scratch Kitchen between November 2017 and January 2018 were victims of credit card theft. Approximately 567,000 cards were compromised.
Jared the Galleria of Jewelry
Signet Jewelers is also the parent company for Jared the Galleria of Jewelry, like Kay Jewelers, and it suffered the same fate.
Saks Fifth Avenue
Saks Fifth Avenue’s parent company, Hudson’s Bay, confirmed that a data breach caused a breach in its payment system, which in turn compromised customers’ debit and credit cards.
The number of customers affected was not revealed, but it is most likely in the millions. Online customers were unaffected though.
Adidas in June announced that it had been compromised. An unauthorized party had gained access to Adidas’ US website. For now, the company believes only those people that shopped may have been affected.
The number of people affected was not revealed, however, a spokesperson confirmed that it was “a few million.”
Under Armour’s MyFtinessPal app
Although Under Armour’s online store or store systems remained unaffected, an unauthorized party breached the MyFtinessPal app.
Encrypted passwords, emails, and names were affected, although payment information was not released. At least 150 million people were compromised due to this breach.
Lord & Taylor
Lord & Taylor is also owned by Hudson’s Bay. Hence, their stores were also affected by the breach.
Panera Bread reported that it was notified regarding a data leak on its website on April 2.
At that time, names, partial credit card numbers, and addresses may have been leaked, although the company is still investigating the incident.
Seeing the severity of the situation, businesses, much like individuals, need to take online security and privacy much more seriously.
Hackers and cybercriminals are not holding back, and have only become smarter, while internet users, in general, are not tech savvy enough to keep themselves protected, let alone deal with a breach. This is where VPNs come in handy, not just for everyday tasks, but for businesses with private networks.