Worrying signs for Xmas shopping!
Just in from Lisa Vaas at Sophos Labs, right in time for the holiday shopping daze: many UK retailers' heads are comfortably buried in the sand when it comes to their cyber security and data protection capabilities, thinking that in spite of not having basic protection and no contingency plans for data breaches, something - maybe magic? - will somehow protect them from malicious cyber-attack.
In fact, the vast majority - 72% - of 250 UK retail IT decision makers surveyed for the 2014 Retail Security Barometer report, which was conducted by Opinium for Sophos, have failed to implement fundamental security required to safeguard both business and customer data.
It's not that retailers aren't aware of the increasing risks, and it's not as though retailers don't know how a breach could affect both consumers and their own brand.
One of many recent examples, this one from across the pond, is US retailer Home Depot, which at the end of last month was facing 44 civil lawsuits across the US and Canada following a huge data breach in September that left 56 million credit cards and 53 million email addresses exposed.