Resources

Digital Threats, Real Losses: Cyber Risks to Retail Operations
Blog

Digital Threats, Real Losses: Cyber Risks to Retail Operations

By Theo Zafirakos on Mon, 12/16/2024
The success of retailers depends on being able to offer consumers what they want. That means, for example, stocking Halloween costumes in October, turkeys in November, and Christmas decorations in December. Cybercriminals are all too aware of this fact and more than willing to capitalize on it, typically for financial gain or to cause disruption.The holiday season is the busiest time of year for...
Cybersecurity
On-Demand Webinar

PCI 4.0 is Here: Your Guide to Navigating Compliance Success

Mon, 06/03/2024
The transition period from PCI DSS 3.2.1 to 4.0 ended on March 31, 2024, a date toward which many organizations have dedicated countless hours of preparation. Looking back on that time, do you know where your compliance efforts stand now? Watch PCI experts Steven Sletten and Jeff Hall in this on-demand webinar PCI 4.0 is Here: Your Guide to Navigating Compliance Success to learn how to...
Compliance
PCI DSS
Shining Light on Employee Cybersecurity Awareness in Retail
Blog

Shining Light on Employee Cybersecurity Awareness in Retail

By Theo Zafirakos on Tue, 01/16/2024
Individual users are often referred to as the weakest link in cybersecurity, as human error is a major contributor to security incidents of all kinds. However, employees can also be a significant asset when adequately trained in cybersecurity hygiene and best practices. The dangers of cyber threats in the retail sector are numerous and costly,...
Cybersecurity
Understanding Mobile Payment Security
Blog

Understanding Mobile Payment Security

By Dilki Rathnayake on Mon, 12/04/2023
As the holiday shopping season kicks in, many are eager to secure early bird discounts and offers, preparing for the festive season. The convenience and speed of mobile devices has led to a growing number of individuals opting for mobile payments, whether conducted online or through contactless systems. The global mobile payment revenue is expected...
Cybersecurity
Latest Cyber Guidance for Retailers from NCSC
Blog

Latest Cyber Guidance for Retailers from NCSC

By Guest Authors on Fri, 12/16/2022
The National Cyber Security Centre (NCSC) recently published important cybersecurity guidance to help protect retailers, which comes right as the holiday shopping season is in full swing. Retail organizations are no strangers to cyber attacks. In fact, some recent large-scale retail industry cyber attacks have included popular brands such as Guess,...
Cybersecurity
Guide

Survey: Retail Industry Ramps Up Cybersecurity for 2020 Holiday Season

The retail industry always has to make special preparations for the holiday season. That was especially the case this year. With Covid-19 disrupting shopping behaviors and creating a surge in online shopping, security teams at these retail organizations have had to make adjustments as well. Tripwire partnered with Dimensional Research to understand how retail organizations are adapting their...
Guide

Essential PCI DSS v4.0 Transition Checklist

The proliferation of online transactions isn’t the only reason the PCI Council created the new 4.0 standard. Recent years have also seen increasingly sophisticated methods among cybercriminals, a surge in cloud use, and the rise of contactless payments. This spurred the need for an updated set of PCI DSS requirements, which were released in March 2022 and will become mandatory in March 2024 for...
Compliance
PCI DSS
Datasheet

Tripwire Solutions for Retail Security

A retailer’s reputation can make or break its success, and the quickest way to damage a good reputation is to compromise customer trust. Every time you as a retailer ask a customer for their personal data and credit card, the customer puts their trust on the line. Most customers assume that retailers have adequate security measures and technology in place to keep that data safe and private. ...
Product Video

Watch a Demo of Tripwire Enterprise

Mon, 08/15/2022
Point of sale attacks are on the rise and securing POS devices cannot be a generic effort. This video shows how Tripwire addresses POS threat protection.
Vulnerability & Risk Management
A Guide to PCI DSS Merchant Levels and Penetration Testing
Blog

A Guide to PCI DSS Merchant Levels and Penetration Testing

By Guest Authors on Tue, 02/27/2018
To distinguish the size of merchant companies and appropriately determine the level of testing required, the founding credit card companies created four different brackets ranging from Tier 1 to 4. Each tier is based on the number of transactions processed per year by the merchant and also dictates the testing a merchant must undertake. While...
Compliance
PCI DSS
Integrity: The New "I" in PCI Compliance
Blog

Integrity: The New "I" in PCI Compliance

By Editorial Staff on Thu, 01/18/2018
The retail industry saw more than its fair share of data breaches in 2017, with security incidents impacting at American supermarket chain Whole Foods Market and clothing companies Brooks Brothers, The Buckle, and Forever 21, to name a few. At least some of those events likely resulted from retailers' poor data breach preparation. Consider the fact...
Compliance
PCI DSS
OpenSSL to Fix 'High' Severity Security Flaw
Blog

80% of Retailers Failed Interim PCI Compliance Assessments

By Editorial Staff on Wed, 03/11/2015
Despite retailers’ continuous improvement in compliance with the Payment Card Industry (PCI) security standards, four out of five companies are still failing at interim assessments, according to Verizon’s latest report. The report highlights that the overall state of compliance grew significantly in 2014, with 20 percent of organizations...
Compliance
PCI DSS