The retail and hospitality sectors face a diverse pool of cyber threats, influenced by the industry’s value chains, the changing business environment and expanding adversary motivations.
Cyberthreats referenced in the Retail and Hospitality Threat Trend Report run congruent to those experienced during the current COVID-19 crisis, focusing on spaces where potential targets are concentrated, such as e-commerce (consumers) and developing across spaces where potential targets are migrating such as remote workforces and cloud.
With a focus on current and emerging threat trends, this report can be leveraged across various levels of a firm’s cybersecurity leadership to inform business strategy, adversary simulation and threat intelligence priorities. In doing so, the report focuses on the following themes:
- General trends in cyber threat activity.
- Cybercriminal groups reuse and elevation of TTPs.
- The professionalization of the cybercriminal value chain.
- Continued cyberattacks against hospitality.
- Expanding market for retail return fraud.
- Call to action – what your firm can do to disrupt these threats.
Call to action
With a wide variety of cyberthreats to defend against, from ransomware to fraud, retail and hospitality organizations need to prioritize tracking and mitigating risks associated with cyber threats of greatest consequence to their environment. This effort can be aided by pursuing some of the following actions:
- Information sharing with peers.
- Tracking cross-sector threats and ripple affects in Retail and Hospitality sectors.
- Expand adversary simulation to third parties and critical points of failure.
- Establish a cyber-fraud operating model.