What started as a US marketing initiative is unarguably now a popular Christmas tradition both in the US and UK too. Black Friday, the first Friday after Thanksgiving, is when bricks and mortar US retailers reduce prices in a bid to kick-start the gift buying season. Senior security analyst at AppRiver, Fred Touchette offers the following security tips for retailers to help protect systems and keep trading.
Today it's no longer confined to just physical stores as online promotions have become the focus. In 2014, an estimated £810 million was spent online during Black Friday in the UK which is more than double the year before with websites crashing and people fighting in the aisles to grab deals.
This year, its thought to be even bigger with estimates suggesting spending will reach the £1 billion mark. So, are you ready for this year's Black Friday 2015 on 27th November? There's definitely one major retailer that won't be keen to see a repeat of last year's chaos. Supermarket giant, Asda heavily promoted its significant Black Friday bargains but instead ended up battered and bruised – quite literally, as shoppers resorted to physical violence to secure the best deals.
Whether you're a sole trader selling via Etsy, a chain of independent retailers or bigger, you need to make sure you're ready to cash in and not out.
Here's a list of tips to keep you trading securely this festive season:
Black Out not an option
One thing that could seriously affect trade is problematic functionality issues and inadequate bandwidth capacity. Check systems now, install any patches ahead of the critical weekend and explore options for temporary bandwidth redistribution if necessary.
Research has shown that, of the £21.6 billion spent over the Christmas shopping season in 2014, around 0.05 per cent was taken by online criminals - amounting to £12.4 million. With spending up, criminals stand to cream off a lot more this year.
There are a number of elements at play here
Make sure you're not part of the problem. Check you don't have spyware, key loggers or any other malicious malware on your systems.
Scammers have been known to create fake retailer websites using replicated brand logos, so check regularly to make sure your website hasn't been falsely replicated elsewhere online.
Check embedded links on your site aren't erroneously routing to externally hosted malicious pages
If you are running promotions, make sure customers have a means to verify any messages they may have received as legitimate to avoid phishers spoofing your messages and damaging your reputation.
Monitor for any unusual behaviour – for example, any ads that you may be hosting aren't hiding something sinister, to prevent your customers falling into the evil clutches of scammers.
Similarly watch for any unusual trades as these could be examples of abused credentials, or cloned cards, and fraudulent transactions.
Watch out for Ransomware
Often delivered by a malicious email or downloading a file online, Ransomware sneaks into the machine by manipulating a security flaw. Having got inside, it begins encrypting all of the documents it can find and then displays a message saying a ransom must be paid to decrypt the files. If you should fall victim it could seriously affect you're ability to continue trading. And, if you do fall victim, don't reward these terrorists with your negligence and your money. All you need to do to prevent ransomware in the first place is to back up your files then, if you inadvertently fall victim, you can restore to a point before the malware took hold.
While being suspicious of email attachments and links is one way to avoid falling victim, ultimately the best solution isn't to wait until you get infected with ransomware, or any other malicious program. As touched upon earlier, software updates often contain security patches that mend holes that malicious programs try to exploit.
Strong Offence is a Good Defence
Lastly, have layered cyber-security solutions in place - things like web protection and spam and virus filtering. These can help prevent ransomware from ever coming into your inbox or being downloaded from the Web.
Of course Black Friday is just one day as, over the entire five-week festive period, consumers are expected to spend £4.9 billion on internet shopping, up from £4bn in 2014 – and that's a lot of lost revenue if your systems go down and sales can't be completed. While there's no silver bullet when it comes to protecting systems and thwarting online threats, following the tips above and implementing a blended security approach that leverages current intelligence and technology from several sources, you can prevent feeling black this Christmas.
Date Posted: 23 November 2015
Look through our regularly updated list of trade suppliers and wholesalers.