View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Software
November 25, 2014

Retailers are prime targets of half of web app cyber attacks

Warning comes ahead of upcoming Black Friday and Cyber Monday.

By CBR Staff Writer

The retail sector is the prime target for web application cyber attack operations, with nearly half of them being targeted at retail applications.

A report has been issued as online retailers prepare for Black Friday on 28 November 2014 and Cyber Monday on 01 December, the busiest days of the online shopping year in the US and the UK.

40% of all SQL injection attacks and 64% of all malicious HTTP traffic attacks have been targeting websites of retailers, the report said.

Imperva chief technology officer Amichai Shulman said: "Our study shows that retail sites are a big target for hackers.

"This is largely due to the data that retail websites store – customer names, addresses, credit card details – which cyber criminals can use and sell in the cyber crime underworld.

"Over the past year we have seen a number of retailers suffer data breaches and I expect this will continue," he said.

Earlier reports revealed that retail websites were hit with twice as many SQL injection attacks than other industry sectors.

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

In addition, websites integrating consumer information, which seek some login credentials, are hit with 59% of the attacks.

"Retailers must take the threat of cyber attack very seriously. Over the last year we have seen some very well known, and seemingly secure, retail websites hit by devastating cyber attacks and these should act as a warning to others in the industry.

"Cybercriminals look at retailers as a very profitable target and they are attacking these websites relentlessly looking for a way in. Information that a hacker is able to extract from the site will very likely make its way onto sites that sell breached data.

"It is a big business. Retailers should be locking down their data centres and databases, ensuring all data is encrypted and that there are strong barriers in place to help keep out intruders."

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.