Why Are Ransomware Attacks on Retail So Common?

We’ve all seen those suspicious emails that show up in our inboxes: “Is this picture of you?” they’ll ask, as we hover over that link for just a moment. Now more than ever, companies are aware and preparing for digital threats and data breaches. Despite that, or perhaps because of it, year after year both the amount and the sophistication of digital attacks increases. According to IBM’s 2022 report on the cost of a data breach, the global average cost for a data breach was a record-breaking $4.35 million, a figure that’s risen nearly 13% just in the last year. For ecommerce and big box retailer professionals who might be wondering, do these trends match up to the data behind ransomware attacks on retail?

When it comes to who bad actors are targeting, it seems more are turning to the retail industry as an industry ripe for exploitation. Research out of cybersecurity and device data privacy firm BlackFog, which catalogs the rate of retail sector cybersecurity breaches yearly, found that ransomware attacks on retail increased by 67% in 2022, year-over-year. Compared to 2020, the increase was even more substantial, growing by 233%.

Daniel Pigeon, the senior product marketing manager at Cyberint, explains why ransomware attacks on retail might be growing in prominence and where hackers are finding vulnerabilities to take advantage of.

Daniel’s Thoughts:

“In 2022, the retail industry was the third most targeted industry for ransomware attacks, and 14% of all ransomware attacks that the Cyberint team observed were on retail industry organizations. So, this raises an important question, which is why are threat actors in ransomware groups targeting the retail industry?

From our research at Cyberint, we believe that there’s two primary reasons. First of all, when threat actors target and attack retail industry organizations, they don’t receive nearly as much negative attention from the media or from law enforcement as when they attack other industries such as healthcare, education, government, and critical infrastructure.

The second reason is that retail industry companies tend to have a weaker cybersecurity posture compared to other industries like technology, banking and insurance. This makes the retail industry a great target as threat actors don’t need to put in as much effort to compromise their victims. We’ve seen threat actors with a relatively low level of sophistication successfully compromise and attack retail industry companies.

The main attack vectors that we’re seeing are vulnerability exploitation of old and unpatched software, phishing attacks that target both the retail organization’s employees as well as the retail organization’s customers, and finally malware: specifically, a type of malware called infostealers, which steal credentials and other sensitive data from the victim’s browser.”

Article written by Graham P. Johnson.

Follow us on social media for the latest updates in B2B!

Image

Latest

Revenue Cycle
Transformation Without Disruption: How Access Healthcare Is Rewiring the Revenue Cycle with Agentic AI
September 17, 2025

Hospitals are juggling shrinking margins and rising costs while denial volumes remain stubbornly high. In the revenue cycle alone, hundreds of billions are lost annually to preventable errors and inefficiencies—in fact, Access Healthcare CEO Shaji Ravi cites more than $250 billion wasted each year. Meanwhile, payers have accelerated their use of AI to adjudicate…

Read More
leading with intention
Making Meaning Out of Life’s Pause: Billie Whitehouse on Finding Strength, Setting Boundaries, and Leading With Intention
September 17, 2025

In June, Forbes profiled Billie Whitehouse, CEO and Creative Director of Wearable X, as she broke her silence about leading through a devastating health crisis. Diagnosed with stage 4 colon cancer at 27 while 22 weeks pregnant, Whitehouse underwent emergency surgery that ensured her survival, but came with the profound heartbreak of losing her…

Read More
Critical Care
Transforming the ICU Through Technology: Advances in Critical Care Telehealth Delivering Gold-Standard Care Anywhere
September 17, 2025

Critical care in the United States faces a mounting crisis. With a shortage of board-certified intensivists and younger, less experienced nurses filling ICUs, hospitals often struggle to provide timely, gold-standard care. Studies show that hospitals with board-certified intensivists in their ICUs see a 30% reduction in patient mortality, yet thousands of facilities still lack…

Read More
How to Scale Events Without Losing the Wow Factor
How to Scale Events Without Losing the Wow Factor
September 17, 2025

In this episode of Secured, host Mike Monsive, CEO of ASAP Security, reconnects with Idan Koren, CMO of Verkada, for a conversation about what it really takes to scale events without losing their impact. Idan shares how his team manages nearly 500 events a year—ranging from intimate gatherings to Verkada One, the company’s flagship…

Read More