Here's How One Retailer Is Prepping for the Black Friday Cyber Onslaught

Fear of ransomware and other cyberattacks will keep IT professionals on their toes over the holiday weekend.

The Black Friday weekend is traditionally one of the biggest of the year for online sales, but those sales hinge on the ability of retailers to keep their e-commerce sites going and to fend off threats from cybercriminals.

The stakes are undoubtedly high for retailers, as well as all kinds of companies, and so are the risks. Cybercriminals know that many IT security professionals will be home eating turkey instead of keeping an eye out for online attackers over the long weekend, making it a good time for them to launch an attack.

That’s why the Cybersecurity and Infrastructure Security Agency on Wednesday reminded companies, especially those that involve critical infrastructure, to keep their guard up, reiterating guidance it issued last year.

The message isn’t lost on Jon Hocut, head of information security at Brooks Running, who plans to stay close to his laptop the entire weekend. He’s charged with protecting the personal information of the runners who buy his company’s products, as well as guarding Brooks’ overall corporate systems from online attackers.

In terms of sales, the “cyber five” stretch, including Black Friday and Cyber Monday, is a huge sales event for the 100-year-old company known for its running shoes and apparel. Its e-commerce team expects traffic on the company’s retail site to jump 30% to 50% over those peak days.

If the site were to crash over the weekend, it could mean millions in lost sales and throngs of disappointed runners, but the Seattle, Washington-based company has more to worry about than that. Its computer systems also hold “shoe secrets” that need to be kept confidential, as well as the software that sends and tracks shipments to retailers.

The ransomware problem

The “worst nightmare” for many companies, Hocut said, would be a targeted ransomware attack, probably involving a Russian criminal gang staffed with cyberexperts, that would quietly infiltrate a company’s systems, then move through them without being detected.

The attackers would figure which systems are most critical, then find and compromise the company’s backed-up data. Everything would appear to be OK until around midnight on Thanksgiving, when the company’s incident response team is home, stuffed full of turkey and nearly asleep, he said.

“That’s when they start hitting all of your systems and taking them down,” Hocut said. “When you’re at your least ability to respond.

“That’s the nightmare, and that’s what we have to keep from happening.”

Ransomware really is nightmare stuff. The attacks, which have locked up entire computer systems at businesses, schools, hospitals and elsewhere, are getting more frequent, more successful and more expensive.

According to Sophos’ State of Ransomware report earlier this year, 66% of organizations surveyed said they were hit with a ransomware attack in 2021, up from 37% in 2020. And 6% of those attacks were successful in encrypting their victims’ data, up from 54% the year before. On top of that, the average ransom paid by organizations for their most significant ransomware attack grew by nearly five times, to just over $800,000, while the number of organizations that paid ransoms of $1 million or more tripled.

A big part of preventing that is making sure systems are locked down and there are enough people to respond if something does happen over the holiday weekend, Hocut said. At Brooks, the entire incident response team will be on call 24/7 over the holiday weekend.

The company also recently hired the cybersecurity company Illumio to help shore up its defenses. The idea is to segment off Brooks’ systems so that the damage is limited if a system is breached, said  PJ Kirner, Illumio’s co-founder and chief technology officer.

Kirner likened the company’s systems to the structure of a submarine, noting that subs are built in compartments, so that if one part of a sub is breached, it can be sealed off and stop the sub from sinking. If a company can quickly detect a breach and prevent the attackers from moving through its systems, it also can limit the damage, he said.

The idea isn’t a new one. The inability of companies to silo off their most precious data has long been blamed for some of history’s most massive data breaches. But segmenting massive computer systems is easier said than done, Kirner said.

That’s particularly true for Brooks, Hocut said. The century-old brand, a subsidiary of Berkshire Hathaway, has seen significant growth in recent years. In 2021, its revenue totaled $1.11 billion, marking its first year over the $1 billion mark.

The threats companies face have also changed, Kirner said. While the thought of a massive data breach might have kept security professionals awake at night just a few years ago, the major threat now is the kind of ransomware attack Hocut described.

“If you look at attacks maybe five years ago, they were data confidentiality issues,” Kirner said. “You got the customer list, you got emails, you got credit cards. They were about a breach of confidentiality.”

Ransomware, in comparison, is about a company’s operations.

“Why are we talking about retail now? Because Thanksgiving is the most impactful operational day of the year,” he said, adding that customer data is just as valuable to cybercriminals any other day of the year.

It’s those operational threats that will keep Hocut and his staff on “maximum paranoia mode” at least through the end of the weekend. They’ll be taking a close look at any alerts that pop up and will be very grateful and happy when they turn out to be false positives, he said.

Other IT professionals may not be so lucky.

“I expect that 90% of my friends who do incident response as a specialty will probably be working on somebody’s painful experience this holiday weekend,” Hocut said.

News Related

OTHER NEWS

Peacock Premium Is Just $1 a Month for Cyber Monday (Save $48)

A Peacock premium subscription comes with every live game of the 2022 FIFA World Cup in Spanish, plus Sunday night NFL football games, as well as classics like The Office. Read more »

Hulu Cyber Monday Deal: Last Chance to Pay Only $2 a Month

This Cyber Monday deals ends today, so act fast if you want to save $72 over a year. Read more »

How to live stream Wales v England and watch the World Cup 2022 from anywhere

Neither side is safe in this home nations playoff Read more »

Best mountain bike 2022: rides to suit hardtail hooligans as well as big-mountain beasts

Wherever you want to ride, our pick of the best mountain bikes has what you need Read more »

Watch Portugal vs. Uruguay World Cup 2022 Match From Anywhere

Cristiano Ronaldo and Portugal could take a commanding lead in a tough Group H with a win today. Read more »

The 2.7-Pound XPS 13 Plus Is a Lightweight Laptop Powerhouse

What makes Dell's XPS 13 Plus worth talking about — by Gear Patrol Studios. Read more »

Best cheap road bike under £1000 for performance at a lower price in 2022

All the best road bikes under £1,000 and even a few road bikes under £500 – it's a two-wheeled bargain bonanza Read more »

Best espresso machine 2022 for the discerning coffee connoisseur

These are the best espresso machines, from affordable and compact to premium and large Read more »

Apple Watch Ultra users just got a great free upgrade that divers will love

A new app will turn the flagship Apple Watch into a fully-fledged diving computer Read more »

Dehumidifier deals have dried up but you can still buy these models

You won't have much luck finding a discounted dehumidifier on Cyber Monday but there are still some models available to buy Read more »

Google Workspace is getting a neat free productivity upgrade

Google Tables is designed to improve the way remote teams work Read more »

Cyber Monday Deal Takes Half Off Your First Month of Sling TV Plus Free Fire TV Stick Lite

Sling will also throw in a free month of its Premium Pass, which includes Epix, Showtime and Starz, along with a free month of Lifestyle Extra. Read more »

Tooo Cycling DVR80 review – Slimline rear light with integrated camera to rival Garmin's Varia

The rear light and safety camera combo keeps you visible while also recording what's happening behind you on the road Read more »

Best trail running shoes 2022 for park runs, hill-climbs and OCR

The best trail running shoes to provide speed and support across grassy, muddy or stoney trails Read more »

7 Google Features to Use When You Don't Know What's for Dinner

Google can have food delivered to your door, offer personalized recommendations and help you avoid crowds. Read more »

Samsung Galaxy Z Fold 3: Grab a former flagship foldable phone for less

The iconic folding tablet phone just dropped below £1,000 Read more »

Major Samsung Galaxy S23 competitor with killer camera launching 1 December

The Xiaomi 13 range will be revealed on 1 December, complete with Leica-certified cameras Read more »

Forget the Samsung Galaxy S23 Ultra – this phone has a better camera

The Vivo X90 Pro+ camera has shown itself to be one of the best on the market Read more »

JBL Pulse 5 review: this light-up speaker will get the party started

The JBL Pulse 5 has bright customisable lights that dance along to the music Read more »

The Argument Against Buying a Soundbar

Soundbars are easy. But if it's surround sound you're after, you'll want to take your money elsewhere. Read more »

Google Pixel users just got this perfect free smart home upgrade

A new feature on Pixel phones allows greater integration with your smart home setup Read more »

Best fitness tracker 2022 to help you get and stay fit

What is the best fitness tracker and fitness band? Well, it's probably made by Fitbit, and you'll find it here Read more »

CarX Street, a brand new open-world racing game, launches onto iOS

CarX Technologies have launched its latest foray into the racing genre with its new title CarX Street. CarX Street seeks to take the thrills of games like Need for Speed ... Read more »

How to Fix “Adobe Flash Player is No Longer Supported” Error

If you’ve recently tried to access Adobe flash content, you have surely gotten the “Adobe flash player is no longer supported” error. It is because Adobe flash was deprecated in ... Read more »

How to live stream Iran v USA and watch the World Cup 2022 from anywhere

A win for either side would put them through to the knockout round Read more »

Cyber Monday Sale Sees Amazon Kindle Drop to Lowest Price Ever

A new Cyber Monday sale sees the Amazon Kindle drop to the lowest recorded price. Amazon’s eBook solution dropped from an initial $99 down to $84. eBooks are the Modern ... Read more »

Cyber Monday PS5 Restock: Best Stores to Visit and Tips to Fast-Track Your Console Hunting

Sony’s PlayStation 5 maintains its huge demand despite being released two years ago. Although the COVID-19 pandemic prompted the retailers to slow down on selling, this year is quite different. ... Read more »

Cyber Monday 2022 Sale: Sonos Speakers are Up for Grabs with Massive Discounts

Cyber Monday deals are here and awaiting the public to splurge for one last time with massive discounts available for all, centering on the audio and listening experience from Sonos. ... Read more »

Get Hulu for Only $2 a Month For Cyber Monday

Save $72 on a full year of Hulu. Read more »

Cyber Monday Sale Sees Sony DualSense Controller and Xbox Wireless Controller Drop Below $50

The Cyber Monday sale is all about tech and gadgets; with it, some prices drop to their lowest point. The Sony DualSense Controller dropped to a massively low price at ... Read more »

Saints vs. 49ers Livestream: How to Watch NFL Week 12 Online Today

Want to watch the New Orleans Saints play the San Francisco 49ers? Here's everything you need to stream Sunday's 1:25 p.m. PT game on Fox. Read more »

Rams vs. Chiefs Livestream: How to Watch NFL Week 12 Online Today

Want to watch the Los Angeles Rams play the Kansas City Chiefs? Here's everything you need to stream Sunday's 1:25 p.m. PT game on Fox. Read more »

NFL Week 12: How to Watch Packers vs. Eagles on NBC, RedZone and More

The NFL's holiday weekend fun continues on Sunday. Read more »

Bucs vs. Browns Livestream: How to Watch NFL Week 12 Online Today

Want to watch the Tampa Bay Buccaneers play the Cleveland Browns? Here's everything you need to stream Sunday's 1 p.m. ET game on Fox. Read more »

Chargers vs. Cardinals Livestream: How to Watch NFL Week 12 Online Today

Want to watch the Los Angeles Chargers take on the Arizona Cardinals? Here's everything you need to stream Sunday's 1:05 p.m. PT game on CBS. Read more »

Samsung Galaxy S23 Better Than iPhone 14? New Performance Tests Say Yes!

The new Samsung Galaxy S23 hasn’t been released yet. (Photo : Taan Hyun from Unsplash)Samsung Galaxy S23 Better Than iPhone 14? New Performance Tests Say Yes! Some performance tests already ... Read more »

Watch Spain vs. Germany at World Cup 2022 From Anywhere

Spain vs. Germany is one of the biggest matches of the World Cup group stage. Read more »

Get Hulu for Only $2 a Month With This Cyber Monday Deal

Save $72 on a full year of Hulu and stream Andor, The Bear, Only Murders in the Building and more. Read more »

Get stronger glutes, quads and calves with this 10-minute bodyweight workout

Short and effective, this lower body workout will also help improve your core strength at home Read more »

Cancel Christmas: these new Xbox Game Pass releases will be much more fun

Why go out when you've got these first-class games coming to your console in early December? Read more »
Breaking thailand news, thai news, thailand news Verified News Story Network