Guest contribution • 05.01.2023

Security for brand and shopping experience?

How retailers can protect their business from cybercriminals

There are numerous steps retailers can and should take to improve their security posture, protect their brand, and ensure a safe shopping experience for their customers during the holiday season (and beyond). Once the shopping season has begun, making extensive changes to a security program or implementing new technology is no longer possible. Nevertheless, retailers can work with existing resources to identify threats in advance and avoid disruption. 

Cloud is a Top Attack Target

Retailers continue to adopt and expand cloud-based (typically multi-cloud) workloads such as e-commerce websites, mobile apps, loyalty programs and microsites to create a convenient and personalized shopping experience for customers. However, as retailers need to quickly respond to market demands by providing their customers with new digital experiences and extending the ones already in place, mistakes and security gaps become inevitable. This presents an invitation to cybercriminals.

System intrusion is an example of a common attack scenario in retail. It usually occurs as part of a malware campaign or data capture function common commonly seen in Magecart-type attacks. These attacks exploit vulnerabilities or utilize stolen or “misplaced” credentials. This allows attackers to capture sensitive information such as passwords and credit card information from online payment forms. According to the Verizon 2022 Data Breach Investigations Report, malware attacks with a “capture app data” functionality are seven times more likely to occur in retail compared to other industries.  

When protecting data hosted in a cloud, tasks such as gaining visibility and control over potential attack surface, quickly patching vulnerabilities (or mitigating attack methods) and implementing strong API security controls are critical. In addition, retailers can benefit from a comprehensive cloud visibility solution that provides an easy-to-use dashboard for monitoring workloads across multiple clouds.

Man with short hair and in white shirt crosses arms and looks at camera....
Thorsten Henning, Director Systems Engineering DACH at Fortinet
Source: Fortinet

Protecting brand reputation requires vigilance

The customer user experience has evolved significantly over the past decade, as have e-commerce platforms themselves. Retailers understand that customers want a smoother shopping experience, more curated offerings, and a frictionless checkout process. To make it happen, they are willing to provide their data. The widespread use of content management systems (CMS) and content delivery networks (CDN) enables retailers to easily and quickly set up new websites. Yet, distinguishing between real websites and those created for fraudulent purposes can be tricky.  

Last year, Fortinet identified several fake websites at the beginning of the Christmas shopping season. One example was a popular power tools website that cybercriminals spoofed. Customers who placed orders through this fake website received counterfeit products. Attackers will continue to fake retailers’ websites as well as their social media accounts to trick customers into handing over their credit card details. This is a very profitable scam for cybercriminals.

Such cyberattacks not only damage potential customers financially, but also hurt the core of any business: its brand reputation. Although companies may not know who is behind an attack, it is of great interest to them to protect their customers. A good way to prevent these attacks is using a Digital Risk Protection Service (DRPS). Such a service provides proactive monitoring and risk analysis of a brand’s digital assets. It also gives IT security teams insight into the perspective of attackers, which allows them to stop the threats before they turn into full-scale cyberattacks.

How to protect brands and customers in pre-Christmas season

Cybercriminals are constantly searching for new opportunities to take advantage of retailers and their customers during the busiest shopping season. But if retailers are aware of the increased risks and take a proactive approach to security, they reduce the likelihood of cybercriminals ruining the holidays for them and their customers. The following measures should be kept in mind to keep the brand and customers safe:

  • Regularly reviewing and optimizing security technologies and collaborations
  • Setting the highest standards for proactive monitoring
  • Educating employees and customers on common cybersecurity practices and motivating them to report suspicious activity.

With these measures, retailers can safeguard their own brand and customers ensuring a more pleasant holiday season for all. 

Author: Thorsten Henning, Fortinet

related articles:

popular articles:

Thumbnail-Photo: Attracting young customers with sustainability and metaverse...
22.01.2023   #e-commerce #retail

Attracting young customers with sustainability and metaverse

How ByondXR wants to shape the future of e-commerce

In marketing, standstill leads to regression faster than in many other sectors. Strategies that were the cutting edge ten years ago often no longer work today. "Generation Z" in particular has its own very specific demands with regard to ...

Thumbnail-Photo: Australia to spearhead ‘paperization’ of confectionery packaging in...
07.02.2023   #sustainability #food retail

Australia to spearhead ‘paperization’ of confectionery packaging in Asia-Pacific

According to GlobalData, leading confectionery companies are ready to test paper packaging in Australia in 2023

Leading multinational confectionery makers, Nestlé and Mars Wrigley Australia are set to test-launch their iconic chocolates and candy brands in paper packaging in Australia in 2023. The move, if successful, will trigger the ...

Thumbnail-Photo: Companies create association for the collective management of textile...
13.02.2023   #sustainability #fashion

Companies create association for the collective management of textile waste in Spain

Spanish branches of ten companies aim to manage textile and footwear waste through a collective system of producer responsibility

Decathlon, H&M, IKEA, Inditex, Kiabi, Mango and Tendam have created the "Association for the Management of Textile Waste", with the aim of managing textile and footwear waste generated in the Spanish market through a "Collective ...

Thumbnail-Photo: Kraft Heinz optimizes product content for 3000 SKUs to win on the...
07.12.2022   #e-commerce #digitization

Kraft Heinz optimizes product content for 3000 SKUs to win on the digital shelf

Salsify assists Kraft Heinz in delivering a consistent brand experience across every digital and physical retail channel

Salsify, the Commerce Experience Management (CommerceXM) platform empowering brand manufacturers, distributors, and retailers to win on the digital shelf, announced it is helping The Kraft Heinz Company update retailer product content in just ...

Thumbnail-Photo: Many paths lead to the checkout – or not!
09.02.2023   #online trading #retail

Many paths lead to the checkout – or not!

Analyse and optimise the quality of digital customer experiences

Knowing the online customer journey, even observing it over the user's shoulder – isn't that the dream of every online retailer? And then to understand why customers convert or not ...

Thumbnail-Photo: Global Retailing Ideas Summit
13.03.2023   #retail #event

Global Retailing Ideas Summit

16.03.2023 - 17.03.2023 | San Francisco, US

The intimate event for the future of retailingMore intimate in both its setting and size, the GR Ideas Summit creates an environment that genuinely allows attendees to interact and engage one another and to extend the learning and connecting beyond ...

Thumbnail-Photo: NRF says GDP growth is slower but consumer spending remains positive...
02.01.2023   #retail #customer analysis

NRF says GDP growth is slower but consumer spending remains positive

Gross domestic product isn’t likely to grow as much in the final months of 2022 as it did in the third quarter, but consumer spending should remain strong

The National Retail Federation has published its GDP predictions for the last quarter of 2022. The results should hardly come as a surprise to close observers. ...

Thumbnail-Photo: Retail Supply Chain & Logistics Expo
16.02.2023   #retail #event

Retail Supply Chain & Logistics Expo

28.02.2023 - 01.03.2023 | London, United Kingdom

Customers want faster delivery times and an easier return system. In order to deliver this, retailers need to adapt their supply chain, and have a seamless warehousing and distribution system.The Retail Supply Chain & Logistics Expo provides a ...

Thumbnail-Photo: VM & Display Show
17.03.2023   #event #displays

VM & Display Show

18.04.2023 - 19.04.2023 | London, UK

The Virtual Merchandising and Display Show is the longest running exhibition for the industryWhether you are a retailer, designer, in the leisure and entertainment industry or in fact use visual merchandising to promote your products or services in ...

Thumbnail-Photo: Christmas World
23.01.2023   #event #marketing

Christmas World

03.02.2023 - 07.02.2023 | Frankfurt, Germany

The trade fair for the busiest time of the yearChristmas World focuses on the strongest-selling and most emotional time of the year and exploits the success factor of experience at the point of sale like no other consumer-goods trade fair. This ...


Captana GmbH
Captana GmbH
Bundesstraße 16
77955 Ettenheim
SALTO Systems GmbH
SALTO Systems GmbH
Schwelmer Str. 245
42389 Wuppertal
7 rue de Madrid
75008 Paris
SES-imagotag SA
SES-imagotag SA
55 place Nelson Mandela
90000 Nanterre