Retail Data Breach

WHITE HAT LAB REPORT nuspire BROUGHT TO YOU BY CONNECT networks STOP THINK 2014 RETAIL deta breach 1001 1001 1001011001. u0110111001 00010110. 101010010011111001010010. 011000n 00 0010110 100101 100101 001010 10011100.0100 100101001100. "0010110 001 01 1010 00 110 110 I001 1010100 010100 001 1111100101001u101. OF THE *01001010001100001100७ 1001010 011011000010 100 10101001101110 1001 001 0001 1100 1100 001001 110001 110011 101010 J110000 001. U0010110 10 001 JUUU11. 1101011 100101. "001100L 10101101u.001 1101 01 000 11010010101001110011100101 1001100001 1001111100 4n110101000n 2100 1001 1101 Start 10 Jan. 2014 Neiman Marcus 25 Jan. 2014 Michaels Breach Public Michaels Stores Breach Public Where Creativity Happens" Although official numbers on the Sally Beauty breach are still being investigated, on March 2, a fresh batch of 282,000 stolen credit and debit cards went on 03 Mar. 2014 SALLY Sally Beauty Breach Public BEAUTY sale in a popular under- ground crime store, On Tuesday, June 10, the U.S. Secret Service alerted P.F. Chang's to a possible security compromise in- volving credit and debit 06 Jun. 2014 P.F. Chang P.F.CHANG'S card data stolen from cer- Breach Public tain P.F. Chang's China Bistro restaurants. 33 restaurants were involved 21 Jul. 2014 Goodwill 9 Goodwill Industries of Southwest Florida, Inc. eedwill Breach Public 14 Aug. 2014 SUPERVALU 14 Aug. 2014 O Jewel - Osco Jewel-Osco Supervalu Breach Public Breach Public Payment information for 56 million credit cards was DEPOT kmart. Kmart THE 02 Sep. 2014 Home Depot compromised in a security breach at Home Depot which took place between April and September of Breach Public 2014 10 Oct. 2014 20 Oct. 2014 Staples Breach Public Breach Public STAPLES esays its investigation suggests the attack was on data from payment cards swiped in stores between bebe 05 Dec. 2014 bebe bebe stores Breach Public Nov. 8 and Nov. 26. The data may have included cardholder names, ac- count numbers, expiration dates, and verification 2014 Percentage of Records Stolen* Government/Military 4.7% Banking/Credit Financial 1.5% 82.7% Business/Retail 64,407,359 Records 1.6% Educational 9.6% Medical/Healthcare Incidents of Business/Retail hacking since 2007 has grown by 250% 2014 BREACH CATEGORIES Insider Accidental 11.7% 7.5% Theft Exposure 3rd Party 26.1% Hacking 14.3% Contractor Employee Negligence Data on 13% 9.3% the Move IS YOUR DATA SAFE WHERE YOU SHOP? VISA MasterCard DISCOVER AMERICAN EXPRESS NETWORK 01010100100100101001 10001101001010010100 1011010011101010101 1010100101010010010 00100100101001010010 0100101001010010010 100111010101010010 100101010010010100 BRANCH OFFICE RETAIL FRANCHISE AFTER CREDIT DATA IS STOLEN IT CAN BE LAUNDERED IN MANY WAYS THROUGH BLACK MARKETS ON THE DEEP WEB ! Distributor Breach Hacker sells cards Hacker steals Credit Card Data in bulk to distributor Deep Web Distributor sells cards online through Black Market on "Deep Web" Web Buyer GIFT U CARD Purchases valid credit card numbers using Bit Coins Gift Cards Buyer purchases Retailer Gift Cards using stolen Credit Ecraigslist ebay Reshipped Online Auction Buyer uses Gift Cards to purchase items then sell online through eBay or other sites Shipper takes original delivery of item and re-ships to online auction buyer IF YOU NEED TO PROTECT GEOGRAPHICALLY DISPERSED AND DISTRIBUTED NETWORKS SUCH AS RETAIL, FRANCHISE AND BRANCH OFFICES FROM TODAY'S THREAT LANDSCAPE, NUSPIRE CAN HELP n nuspire networks Source: Nuspire proprietary SIEM data www.nuspire.com YEAR 011001010100100100101001010010 010010001101001010010100100101 0011101011010011101010101001001 1000110101010010101001001010010 10101010010101001001010010010101 01011010011101010101001001000101 0101010010010010100101001001010 000110100101001010010010101001