Connect with us

Hi, what are you looking for?

HEADLINES

Pandemic, post-pandemic measures will continue to alter threat landscape

The retail and hospitality industry with its predominant “brick-and-mortar” focus pre-pandemic, bore the brunt of moving portions of their workforce to remote work – complicating their attack surfaces and creating opportunities for attackers.

Image by Megan Rexazin from Pixabay.com

IntSights, the threat intelligence company focused on enabling enterprises to Defend Forward, released a research report on their findings of the cyber threat impact of COVID-19 on the retail and hospitality industry. The retail and hospitality industry with its predominant “brick-and-mortar” focus pre-pandemic, bore the brunt of moving portions of their workforce to remote work – complicating their attack surfaces and creating opportunities for attackers.

The report uncovers how the pandemic and post-pandemic measures will continue to alter the industry threat landscape, especially as vaccine distribution and contact tracing efforts expand to wider segments of the population.

Retail, hospitality, and travel businesses increasingly hold protected health information (PHI) and personally identifiable information (PII) records as more and more of these businesses now require proof of COVID-19 testing or vaccination from customers or employees. IntSights discovered that underground black market sale prices of containing PHI and PII with key data points for identity theft are notably higher than those of even compromised credit cards, putting the industry at a larger risk of cyberattacks as the information it holds becomes increasingly attractive and lucrative to criminals.

The report also highlights the surge in demand for fake COVID-19 testing and vaccination documents resulting in attacks against retailers with pharmacy components – and a black market for fake test results has been thriving online. Some criminal vendors claim that they can abuse access to legitimate infrastructure that outputs testing documentation to generate otherwise authentic documents without actually conducting tests.

Advertisement. Scroll to continue reading.

Other key findings include:

  • Growth in the sale of unauthorized access to enterprise networks on underground criminal forums that enable other criminals to deploy ransomware on the networks, for instance, and access are mostly priced at four figures in USD
  • Expansion of ecommerce attacks and card-not-present (CNP) fraud as more consumers increase reliance on ecommerce and home deliveries
    • Up for sale on underground criminal forums are Python scripts to bypass one-time passwords (OTPs) which provide an extra layer of protection for CNP transactions

Advertisement
Advertisement
Advertisement

Like Us On Facebook

You May Also Like

White Papers

Statistics from Kaspersky Security Network (KSN) revealed that phishing attempts in the Philippines is higher than in Indonesia (65.90%), Singapore (55.67%), Thailand (55.63%),  Malaysia...

White Papers

Intruder dwell time was longer in smaller organizations’ environments. Attackers lingered for approximately 51 days in organizations with up to 250 employees, while they...

HEADLINES

The PLDT group’s latest clampdown on ‘smishing’ has expanded earlier efforts to prevent these harmful messages from reaching customers. From January to May this...

White Papers

Data from Kaspersky showed the detected attempts to attack Filipino mobile users plunged to 55,617 or 49% in 2020 compared to 110,128 in 2019.

HEADLINES

Today endpoint security is an integral part of an organization’s cyber defense infrastructure, which shares threat intelligence feeds and policy controls with all other...

HEADLINES

Tonik has selected the Noname API Security Platform to ensure that its digital efforts, which have accelerated during the pandemic, incorporate robust cybersecurity measures that...

HEADLINES

Talking about cybersecurity is talking about technology. However, it is increasingly common to study cyber risk as part of an interdisciplinary approach. After all,...

HEADLINES

A new Kaspersky Safe Kids study has revealed the most viewed children’s interests between March and May 2022.

Advertisement