Email Security Blog

Don’t Be the Next “Target” – Protect Consumer Data & Your Reputation

Patrick Peterson January 17, 2014 DMARC
Fallback Featured Image

For retailers, these last 10 months have been the calm before the storm, as it is apparent now that criminals have been quietly busy over that time period. With the recent Target and Neiman Marcus point of sale (POS) breaches, the need for tight security from retailers has become painfully obvious. We are at cyber war and the bad guys are winning. These recent attacks should be a wake-up call to other retailers.

First, be aware that there will be future data breaches. There will certainly be more companies who come forward to acknowledge their data was compromised in similar attacks as happened with Target and Neiman Marcus. If your company’s information has been compromised, understand that the breach itself is not the end of the damage that can be inflicted on both your company and your customer. Rather, it is just the beginning.

Cyber criminals use the information they obtain, including credit card numbers, phone numbers and email addresses in continued attacks. Credit and debit card numbers have a relatively short shelf life as once the breach is public knowledge, banks send out new cards to replace the compromised accounts. That other data though- the email addresses and other personal identifying information- can be sold off, making your customers susceptible to future phishing attacks. Adding insult to injury, these phishing attacks are often disguised as helpful customer service emails coming from the very retailer that was breached in the first place.

Who deals with the aftermath? Well the consumer does if their personal data has been stolen. The theft of personal data and a year of free credit reporting seems an unfair exchange for shopping at a favorite store. The days of companies shifting the responsibility of dealing with this aftermath to consumers should be long over. So what can retailers do to protect consumer data and their reputation? One thing they can do is secure their email channel with DMARC so consumers aren’t the victims of phishing attacks after their personal credentials have been stolen.

We encourage every company to take a page from the site. This organization of leading banks, e-tailers, online payment companies and social networks has developed an email authentication standard called DMARC that strikes at the root cause of the incidents. With the rise of e-commerce, spammers and phishers have a great financial incentive to compromise user accounts. DMARC helps email senders and receivers work to better secure the email channel, protecting users and brands. This measure is a no-brainer and leading companies in Financial Services and Social Media have already taken that step.

Leave a Reply

Your email will not be published. All fields are required.

Agari Blog Image

April 17, 2019 Fareed Bukhari

The Time is Now: Underscoring the Importance of DMARC for State and Local Governments

Scammers know that impersonating a trusted government agency is an extremely effective way to trick…

Agari Blog Image

February 26, 2019 Armen Najarian

Retail Trails Other Sectors in Adopting DMARC for Phishing Prevention

Recent research by the Agari Cyber Intelligence Division finds that the retail industry is dead…

Person Looking at DMARC Protected Email

February 19, 2019 Fareed Bukhari

DMARC Adoption Up, But 85% of Fortune 500 Remains Vulnerable to Brand Hijacking

Adoption of Domain-based Message Authentication, Reporting, and Conformance (DMARC) has seen modest growth in recent…

Agari Blog Image

October 16, 2018 Fareed Bukhari

One Year Later: Federal Mandate for Email Authentication Huge Success

Responding to BOD 18-01, agencies rally to complete the fastest sector-wide adoption of DMARC One…

Agari Blog Image

October 16, 2018 Patrick Peterson

DMARC: A 12-Month Triumph for DHS—and the Nation

Today is the deadline set by the Department of Homeland Security for all executive branch…

mobile image