E-Commerce Passes POS as Biggest Target of Hackers 

Feb. 22, 2013

For the first time, e-commerce sites surpassed POS systems as targets of cybercriminals illegally harvesting payment card data, according to a recent report. In this year’s version of its annual Global Security Report, Chicago-based information security firm Trustwave found the retail industry was the top target. Trustwave said attacks on retailers made up 45 percent of the more than 450 data breaches around the world last year it examined.

“Businesses should take a step back and re-evaluate their security posture,” said Robert J. McCullen, chairman, CEO and president of Trustwave.  “All developers, particularly in the e-commerce industry, should implement a full lifecycle security plan that includes thoroughly educating themselves and their employees, equipping themselves with the best tools to protect themselves against attacks and making sure they are using the most reliable resources for zero day detection.”

Many of the attacks on retailers come from hackers in former Soviet Bloc countries that don’t have extradition treaties with the U.S., the report said, making it very difficult for American authorities to prosecute hackers there. Attacks originated from 29 countries, but Romania accounted for 34 percent of them, passing Russia, the 2011 leader.