British retailers can learn lessons from US identity hack

A senior US security executive has said retailers should not simply ‘plug holes’ from previous incidents, but instead get ahead of the problem.

A senior security executive has said that British retailers can learn lessons from the biggest identity hack case ever' - where 130 million credit and debit card numbers were stolen.

Chris Young, vice president for products at RSA, told IT PRO that retailers should not simply plug holes that they've seen in previous attacks, but rather get in front of the problems by identifying risk and putting policies in place.

"It's dangerous to chase incidents, if you are a retailer or anything else," he said. "What retailers need to do is learn from the incidents that have happened, but it's really about taking a step back and figuring out where do you have you greatest sources of risk.

One technology that companies were already using to protect data was enterprise-wide key management', where the right information was encrypted and the keys to it managed centrally.

He said that in many cases he was seeing retailers going a step further, such as with data-masking', where sensitive information was replaced with realistic false information.

Technology like this is used more in the UK and US, which Young said was due to the "size of the economies" that made retailers located there bigger targets. Also, the use of credit was much more pervasive there than around the world.

Featured Resources

Shaping the workplaces of the future

Rise to the challenge

Download now

Enabling a hybrid future

A guide to setting up new working practices

Download now

Seven steps to successful digital innovation and transformation

What to invest in and what to avoid when pursuing digital transformation

Watch now

Defend your organisation from evolving ransomware attacks

Learn what it takes to reduce risk and strengthen operational resiliency

Download now

Recommended

FBI still frowns on ransomware payments
ransomware

FBI still frowns on ransomware payments

11 Jun 2021
AttackIQ teams with VMware to offer expert advice on network security
Security

AttackIQ teams with VMware to offer expert advice on network security

11 Jun 2021
CD Projekt acknowledges stolen data is being circulated online
ransomware

CD Projekt acknowledges stolen data is being circulated online

11 Jun 2021
JBS pays $11 million ransom following cyber attack
ransomware

JBS pays $11 million ransom following cyber attack

10 Jun 2021

Most Popular

Ten-year-old iOS 4 recreated as an iPhone app
iOS

Ten-year-old iOS 4 recreated as an iPhone app

10 Jun 2021
GitHub to prohibit code that’s used in active attacks
cyber security

GitHub to prohibit code that’s used in active attacks

7 Jun 2021
WWDC 2021: Apple unveils iOS 15, macOS Monterey and more
iOS

WWDC 2021: Apple unveils iOS 15, macOS Monterey and more

8 Jun 2021