May 4, 2015

Only 53% of executives believe the EMV chip and pin will protect against a data breach, despite claims that it is more secure, according to a new study.

April 19, 2015

Verizon is out with its annual cyber security report and while the findings are disturbing the good news is that retailers can thwart many a breach attempt by focusing on a handful of basic attack patterns. 

March 19, 2015

Target Corp. has agreed to pay $10 million in a proposed settlement of a class-action suit related to the company’s 2013 data breach, according to court documents filed Wednesday. The retailer confirmed the news in a CBS News report.

March 18, 2015

The National Retail Federation testified before Congress today on the need to pass a federal data breach notification law that applies to all entities that handle sensitive customer data. 

January 27, 2015

The National Retail Federation reiterated its support Jan. 27 for a federal data breach notification standard as a congressional panel held a hearing on this issue, saying legislation should provide consumers with notice whenever a data breach occurs. 

January 27, 2015

The Retail Industry Leaders Association (RILA) says retailers support a strong pre-emptive federal data breach law that allows for reasonable and clear notice triggered by potential customer harm. 

December 22, 2014

Time and again in 2014 the vulnerability of retailers’ information systems became apparent with Staples the latest major chain forced to admit an inability to protect customers’ personal information.

December 12, 2014

Chief Information Security Officers (CISO) have become more common on companies’ senior leadership teams. They might be in even higher demand after the highly publicized data breaches at Target, Home Depot, Neiman Marcus and other companies in the past couple of years (see a timeline of data breaches in the past decade here). In fact, Neiman Marcus just hired its first CISO, Sarah Hendrickson. 

December 3, 2014

A federal judge says several banks suing Target Corp. over its 2013 data breach have a plausible case for negligence and can proceed with the lawsuit.

October 17, 2014

President Barack Obama has taken heat over his use of executive orders, but that wasn’t the case on Friday when retail trade groups lined up behind the president in support of wide ranging data security measures.

September 30, 2014

Just a little more than a month after Supervalu announced a data breach, the company has confirmed a second malware attack on its payment systems.

September 8, 2014

As more retailers cope with data breaches, Virtual Piggy, provider of family and teen payment technology Oink, has added Jordan Harris to its team as risk officer.

September 5, 2014

Several Home Depot customers have filed a class action lawsuit in the United States District Court for the Northern District of Georgia, Atlanta Division, alleging that Home Depot failed to meet its legal obligation to protect their credit card and personal information.

August 15, 2014

Supervalu has suffered a data breach that may have resulted in theft of customer payment card data. The stolen information may include account numbers, and in some cases also the expiration date, other numerical information and/or the cardholder’s name.

June 4, 2014

As if having to deal with the rising threat of data breaches weren’t already enough for retailers, many continue to struggle to make sense of today’s rough patchwork of federal and state data breach laws.

April 18, 2014

Michaels assured customers a previously disclosed data security issue had been fully contained and raised the disconcerting prospect that it is only possible to make such a claim after a breach has been detected.

April 4, 2014

There were a lot of developments in the world of data security last week with a judge agreeing to consolidate lawsuits related to the Target data breach in a Minnesota court, more hearings in Washington, D.C. and troubling research about consumers sharing personal data on public Wi-Fi.

March 31, 2014

It looks like one year of free credit monitoring has become the new industry standard for retailers looking to placate customers potentially affected by a data breach.

March 14, 2014

In the competitive world of low-cost retailers, Target has led the pack. The leak of millions of customers’ personal data with implications of identity theft and fraud called into question their status as one of the top-retailers and has had their executives reeling.

February 26, 2014

Target continues to cope with the fallout of a data breach, which, as expected, hurt the company’s fourth-quarter results.

February 21, 2014

“Ongoing investigation.” “Forensics and law enforcement continue to investigate.” For now, it is a bit too early to write the “Lessons Learned” piece about the Target/Neiman Marcus/Michaels data breach incident. But there are a few things that were known before these latest payment card/database breaches occurred and should be put into context in light of what we are currently investigating.

February 3, 2014

Many fingers pointed at Target after the retailer suffered a massive data breach during the holidays, but preventing the next cyber attack is beyond the scope of any single company, according to testimony retail representatives shared with lawmakers on Monday.

January 23, 2014

Target’s data security breach has already cost all credit unions between $25 million to $30 million. Those numbers are expected to climb in coming weeks as more of the cooperative financial institutions report their costs and as fraud losses are incurred down the road, according to preliminary results of a survey of credit unions by the Credit Union National Association (CUNA).

January 17, 2014

The malicious attack on Target which resulted in a massive data breach has spawned a “we’re all in this together” attitude among the nation’s retailers with the National Retail Federation spearheading the charge for common sense consumer protection measures.