If you’ve been in this business for any time at all, you’re probably well-versed on traditional store security. You likely have cameras to deter theft, and you and your staff are trained to handle things like shoplifting or even robbery. In today’s digital age, however, threats to your store may not enter through your doors, but through technology.
Think of cyber security as defending against the Trojan Horse from Greek history. After failing for ten years to breach the city of Troy’s mighty defenses, the Greeks constructed a huge horse made of wood and left it at the gates of Troy. Relishing their apparent fortune, the Trojans opened their gates to retrieve the wooden monument as a victory trophy. Later, as the city slept, Greeks who were secreted away in the belly of the horse quietly emerged, opened the gates of the city, and let in the awaiting Greek army. By morning the city of Troy was no more.
To this day, an attempt to infiltrate a target while disguised as something else is known as a “Trojan Horse.” Cyber attacks can happen in a similar way. Today’s retail environment is full of firewalls, routers, anti-virus, intrusion detection, and prevention devices aimed at keeping the bad guys out. All of these safeguards are for naught if you or one of your employees unknowingly let someone in. This can happen by opening a malicious email attachment, letting someone you don’t know follow you into the building, or divulging sensitive company information over the phone.
Train Against Digital Threats
You and your employees — the users – are often the weakest link in the chain of the company defenses. That’s why cyber security training is so important. And, it’s also the law. Payment Card Industry Data Security Standards (PCI-DSS) require that a formal security awareness program be implemented to make all personnel aware of the importance of cardholder data security. In addition to PCI compliance, everyone on your staff should be trained on:
- Password security
- Credit card security
- Safe browsing
- Social engineering
- Acceptable use policy
- Hardware security
Remember the lesson of the Trojan Horse – sometimes you won’t be able to see your enemy’s attack coming. Be sure your store is protected.
