Why Are Ransomware Attacks on Retail So Common?

Daniel Litwin
Mar 1, 2023
Learn more
cybersecurity IT Phishing ransomware retail

We’ve all seen those suspicious emails that show up in our inboxes: “Is this picture of you?” they’ll ask, as we hover over that link for just a moment. Now more than ever, companies are aware and preparing for digital threats and data breaches. Despite that, or perhaps because of it, year after year both the amount and the sophistication of digital attacks increases. According to IBM’s 2022 report on the cost of a data breach, the global average cost for a data breach was a record-breaking $4.35 million, a figure that’s risen nearly 13% just in the last year. For ecommerce and big box retailer professionals who might be wondering, do these trends match up to the data behind ransomware attacks on retail?

When it comes to who bad actors are targeting, it seems more are turning to the retail industry as an industry ripe for exploitation. Research out of cybersecurity and device data privacy firm BlackFog, which catalogs the rate of retail sector cybersecurity breaches yearly, found that ransomware attacks on retail increased by 67% in 2022, year-over-year. Compared to 2020, the increase was even more substantial, growing by 233%.

Daniel Pigeon, the senior product marketing manager at Cyberint, explains why ransomware attacks on retail might be growing in prominence and where hackers are finding vulnerabilities to take advantage of.

Daniel’s Thoughts:

“In 2022, the retail industry was the third most targeted industry for ransomware attacks, and 14% of all ransomware attacks that the Cyberint team observed were on retail industry organizations. So, this raises an important question, which is why are threat actors in ransomware groups targeting the retail industry?

From our research at Cyberint, we believe that there’s two primary reasons. First of all, when threat actors target and attack retail industry organizations, they don’t receive nearly as much negative attention from the media or from law enforcement as when they attack other industries such as healthcare, education, government, and critical infrastructure.

The second reason is that retail industry companies tend to have a weaker cybersecurity posture compared to other industries like technology, banking and insurance. This makes the retail industry a great target as threat actors don’t need to put in as much effort to compromise their victims. We’ve seen threat actors with a relatively low level of sophistication successfully compromise and attack retail industry companies.

The main attack vectors that we’re seeing are vulnerability exploitation of old and unpatched software, phishing attacks that target both the retail organization’s employees as well as the retail organization’s customers, and finally malware: specifically, a type of malware called infostealers, which steal credentials and other sensitive data from the victim’s browser.”

Article written by Graham P. Johnson.

Follow us on social media for the latest updates in B2B!

Image

Latest

telecom
Predictive Networks: How Baron Weather and GIS are Strengthening Telecom Operations
February 12, 2026

Severe weather is no longer an occasional disruption for telecom providers—it’s becoming part of the operating environment. During Hurricane Ida in 2021, the Federal Communications Commission reported that nearly 1,000 cell sites across Louisiana and Mississippi went offline. In 2024, Hurricane Milton left more than 12% of cell sites in impacted areas of Florida…

Read More
The DAISY Foundation: Impacting Nurse Careers Through Recognition
The DAISY Foundation: Impacting Nurse Careers Through Recognition
February 12, 2026

Recognition is often described as a “nice to have” in healthcare, but on this episode of Care Anywhere, it’s framed as something far more essential. Host Lea Sims sits down with Deb Zimmermann, DNP, RN, NEA-BC, FAAN, Chief Executive Officer of The DAISY Foundation, and Bonnie Barnes, FAAN, co-founder of the organization, to explore…

Read More
Revpar Media
The Origin of Revpar Media: Host Calvin Tilokee’s Journey from Revenue Management to Performance Storytelling
February 11, 2026

Something has shifted in hotel marketing, and you can feel it. In a landscape where every property can publish polished visuals, aesthetics alone are no longer enough to stand out—or to convert attention into bookings. Research increasingly shows that social media now plays a meaningful role in how travelers choose destinations and plan trips,…

Read More
spiral growth
Spiral Growth: The Career Strategy That Builds Real Leaders
February 11, 2026

Leadership pipelines are under pressure. Companies are moving faster, roles are becoming more cross-functional, and high-potential talent is expected to deliver beyond narrow job descriptions earlier in their careers. At the same time, the World Economic Forum estimates that 39% of workers’ core skills will need to evolve by 2030 to keep pace with…

Read More
Related
Energy
Software & Technology
Buy, Build & AI: Your New Software Strategy for Energy Leaders
February 3, 2026
AI in energy
Healthcare
May the Agentforce Be With You: AI in Energy Services
February 3, 2026

Generative AI has moved past being a shiny demo and into the messy reality of enterprise operations—where data lives in different systems, customers expect instant answers, and security teams (rightfully) say “prove it.” In energy services specifically, even small efficiency gains matter: many retail energy providers operate on thin margins, and operational blind spots—billing…

Read More
Energy billing
Healthcare
Nightmare on Revenue Street: Energy Billing Edition
February 3, 2026

Energy billing is one of those things most people only think about when something goes wrong—an unusually high charge, a missing bill, a surprise shutoff notice, or a rate plan that suddenly doesn’t make sense. With smart meters, more complex pricing options, and different rules in regulated vs. deregulated markets, even a small breakdown…

Read More