The D&D Daily Mobile Edition
LP, AP & IT Security's #1 News Source

Randy Hamilton named Director of Loss Prevention & Compliance for Tilly's
Randy was previously the VP of Operations for USS for over a year, and has held other loss prevention and asset protection positions for retailers including CSO & Sr Director - AP, Corporate Security & Business Continuity and Director LP, Business Continuity and Corporate Security for HD Supply, GAPTL and DAPTL for Target, LP DC and District Manager for Caldor and SC Territorial Office LPM for Mervyns. Congratulations Randy!

Mike Soberal named Sr Manager Corporate Security for Aurora Cannabis, Inc.
Mike previously held the role of Director of Security for Sundial Growers, Inc. He held various other security positions including Sr. Manager Security Operations - Canada for Teva Pharmaceuticals, Manager of Security, Safety & Sustainability for H&R REIT, Manager of Physical Security, Fire & Parking for University of Toronto, Manager of LP/Corporate Security for DHL and Security Associate for Symcor. Congratulations Mike!

Tim Hickey Join CONTROLTEK as Senior Manager of Strategic Accounts and Asset Tracking Solutions
CONTROLTEK, an emerging leader in retail product protection, is proud to announce and welcome Tim Hickey as senior manager of strategic accounts and asset tracking solutions. Tim brings over 25 years in sales and retail technology, with a focus in asset protection, to the CONTROLTEK team.

Prior to joining CONTROLTEK, Hickey served as director of business development of the Asset Tracking Division at LP Innovations and has held various sales positions at BlueTracs, Verint, and TYCO. Hickey holds a bachelor’s degree in communications from Stonehill College. Read full press release here

Jason Bryan named Director of Sales, North America for 3xLOGIC
Jason will assume responsibility for field sales of 3xLOGIC and PACOM products in the US and 3xLOGIC’s expanded regional sales team will report to him. Jason has worked for parent company Stanley Black & Decker (SBD) almost since graduation from Purdue University and most recently has been managing a large part of the Sonitrol business in Indianapolis. Jason brings a wealth of knowledge to the team about the Security industry in general. Click here to read more about 3xLOGIC's global sales expansion

Andrew Griffith named Global Director of Sales Engineering for 3xLOGIC
Andrew worked for sister company, PACOM, for 16 years. He brings an in-depth knowledge of the PACOM product and has a long history of managing a global technical team. Andrew is working with his base of Sales Engineers to enhance the SE organization and its ability to support the sales team. Andrew is also recruiting personnel to expand the SE organization globally. Click here to read more about 3xLOGIC's global sales expansion

Submit Your New Corporate Hires/Promotions
or New Position 

Williamson Smith is believed to be responsible for stealing tens of thousands of dollars’ worth of merchandise from over a dozen Boise area retailers as well as retailers in Northern Idaho, Oregon, and Washington. This week, Boise Police and local law enforcement in East Wenatchee served a search warrant at a home linked to the suspect and found over $14,000 worth of stolen products including razors, fishing line, diet pills, allergy medicine and more. Boise Police would like to thank the Organized Retail Crime Association of Idaho, the Washington State Organized Retail Crime Alliance, East Wenatchee Police Department, Douglas County Sheriff’s Office, the Washington State Gambling Commission, eBay PROACT team and numerous retailers for their assistance.  Read more

For further information on PROACT, email inquiries to PROACT@eBay.com.

Spotlight on 3SI Security Systems
 

Click here to read more 3SI success stories!

U.S. In the Crosshairs
Something's UP & Is "FBI Voices" Right in Their Warning?
"DHS Issues Emergency Directive on DNS Security"
All government domain owners are instructed to take immediate steps to strengthen the security of their DNS servers following a successful hacking campaign.

On Jan. 22, US-CERT issued notice of a CISA emergency directive on DNS infrastructure tampering. The notice was the typically brief CERT notice, but it linked to an emergency directive at cyber.dhs.gov that called on anyone managing .gov or other agency-managed domains to take a series of steps aimed at remedial efforts — and to take those steps very quickly.

"The fact that they put out the warning means that there's been some sort of successful breach against a government site that they're recovering from," says John Todd, executive director at Quad9. "This type of warning means that there's been some damage."

Marc Rogers, executive director of cybersecurity at Okta, agrees. "CERT puts out notifications on a regular basis, but I haven't seen one with such a strong sense of urgency before, which tells me that DHS is acting on actual knowledge of an ongoing attack," he says.

In the emergency directive, DHS said "attackers have redirected and intercepted web and mail traffic, and could do so for other networked services." The attacks began when someone stole, obtained, or compromised user credentials for an account able to make changes to the DNS records, the directive points out. darkreading.com

Editor's Note:  Most of what was leaked in yesterday's 'FBI Voices' article about how the shutdown is impacting the FBI, we learned a few weeks ago, and then some, in our communications with them about our 'Live in NYC at the NRF Big Show' Reception FBI Keynote speaker. As they were forced to pull the speaker out due to the shutdown and shared with us how it was impacting them. At the time we felt the information was best not shared with the public.

So we are somewhat concerned and surprised to see yesterday's "FBI Voices" article that shares our increased risk as a nation. Was it politically motivated? Or was it merely keeping us informed? Point being is that we should not have to be asking that question and certainly the Daily does not share sensitive information. Just a thought Gus Downing

Corporate Cybersecurity Awareness, By The Numbers
Companies Aren't Reporting Cybersecurity Posture or Readiness
The Securities and Exchange Commission a year ago issued its most detailed guidance to date for how companies should disclose how they view and manage cybersecurity risks. Adherence to the SEC's, shall we say, aggressive encouragement of disclosure has been uneven. Reading the proxy statements of some firms in the S&P 500, one might surmise that cyber threats simply don't exist. They have said nothing about the risk in their filings. 

Oversight by boards and senior leaders has improved in the past year or so, with directors educating themselves about cybersecurity.

Today, we let numbers tell the story, where large companies stand as they prepare defenses against unseen attackers. Things are better than they were a year ago but there's still a long way to go.

How does your company measure up?

5.9 Serious cyber incidents per year for companies over $40B in revenue
2.2 Meet thresholds requiring reporting to SEC
$3.9M Average cost of data breach
$148 Average cost per file stolen
42% of Directors say will have greatest impact on their company
52% of Directors say they understand enough to provide oversight
3 of 500 have dedicated standalone committee for cybersecurity
43% Have CISO's reporting to CEO's
35% Report to CIO, 14% report to Board of Directors
14% Doesn't have CISO cybersecurity.cmail20.com

How AR/VR Tech Is Reshaping Retail
According to the PYMNTS Virtual Reality In Retail Report, there are expected to be 100 million AR/VR headset users by 2022. These are some of the ways that retailers from Amazon to Walmart are tapping into headsets — and other technology — to serve digitally-connected consumers and help train employees:

The number of people using VR technology jumped from 85 million to 171 million in 2018. And consumers can use this technology to help shop for furniture. Amazon, for instance, is launching an Amazon Showroom feature that takes advantage of virtual reality tools. With the new functionality, shoppers can put 3D images of furniture into a virtual room in order to see how those items would really look.

The approximate number of AR/VR headsets shipped in the first quarter of 2018 was 1.2 million. Some of those headsets are arriving at brick-and-mortar stores to help with employee training and development. In September, it was reported that Walmart was planning to send four Oculus VR headsets to each Walmart Supercenter as well as two units to every Neighborhood Market and discount store.

Approximately 50 Macy’s locations have smart mirrors installed. In September, it was reported that the retailer was letting customers “try on” 250 makeup products with virtual mirrors. In addition, it was reported that the mirror could let customers order and pay for their makeup products. The news came a few months after it was reported that H&M was rolling out a voice-activated mirror in a flagship New York City location.

The expected number of AR/VR headset users by 2022 is forecasted to be 100 million. pymnts.com

Microsoft CEO Calls For Facial Recognition Tech Regulation
CNBC, citing comments Nadella made during the World Economic Forum in Davos, reported Nadella said that as the use of facial recognition technology grows self-regulation may not go far enough to contend with the impact it may have on society.

“One of the things that I feel today is, in the marketplace, there’s competition; there’s no discrimination between the right use and the wrong use of facial recognition,” Nadella said, reported CNBC. He noted that self-regulation is still very important but laws may be needed to prevent any harmful outcomes the technology could have. The Microsoft CEO cautioned that regulation has to help and not hinder the marketplace. pymnts.com

Enterprise Malware Detections Up 79%
U.S. Tops List - Detections of Most Information Theft
North America Tops List - Detections of Top 10 Threats
Enterprise threats ramped up toward the end of 2018 as cybercriminals shifted their strategies to hit business victims with unpatched, insecure networks – and found plenty of targets.

That's one of the key findings from Malwarebytes Labs' "State of Malware Report 2019," which analyzes threats from January through November 2018 and compares them with the same period from 2017. After cryptomining exploded near the end of 2017, the next year began with attackers broadening their strategies to hit Mac and Android devices and use browser-based threats.

A Pivot Toward the Enterprise

Most attackers don't plan to hit specific companies, Kleczynski points out. They start by casting a wide net, conducting online research to see who's most vulnerable, then pursuing them. Business malware detections rose 79% over the last year, report Malwarebytes researchers, who link the rise to an increase in backdoors, miners, spyware, and information stealers.

Many businesses are affected with popular strains of malware like Emotet, which he explains is "going around like the flu." Trojan detections were up 132%, a rise led by the prevalence of the Emotet, which, like other info-stealing malware, uses exploits to move across corporate networks and brute-forces credentials.

Backdoors increased 173% among enterprise victims, spyware was up 142%, and RiskwareTool rose by 126%, researchers report.

See the full report: Malwarebytes Labs "State of Malware Report 2019"   darkreading.com

Dark Clouds Coming - What's Yours Doing - Do You Even Know?
"Multi-vector attacks target cloud-hosted technologies"
Securonix report outlines the threat posed by automated multi-vector, multi-platform attacks against cloud infrastructure.

The push to move everything into the cloud over the past several years has generated a large number of misconfigured and exposed deployments of various software stacks. This has attracted sophisticated attacks that destroy data or abuse server resources for cryptocurrency mining.

In a new report released today, security researchers from Securonix warn of an increase in the number of multi-vector and multi-platform automated attacks against cloud infrastructure over the past few months. These often combine cryptomining, ransomware and botnet malware all in one. csoonline.com

Nedap's !DCloud Delivering Total Stock Visibility For Retailer Celio
RFID Tracks Goods at 750 French Menswear Stores
France's Biggest Roll-Out

In one of France's largest UHF RFID implementations, menswear retailer Celio has deployed RFID technology across all 750 of its stores. The system's rollout was completed in November 2017, following a 12-month deployment period, and is bringing visibility to inventory at each location. RFID was taken live at the point of sale (POS), along with electronic article surveillance (EAS) technology, at 55 of those locations by the end of 2018.

With the technology, provided by Nedap, Celio reports that it will be able to provide fast and accurate e-commerce service to its online customers, as well as prevent out-of-stocks and reduce clerical work that is otherwise needed to understand where goods are located. With the POS and EAS systems, the store can gain real-time understanding of which goods are at the store, or have been sold or removed from the site for replenishment orders.

In the long run, this is one step in the retailer's effort to make it more responsive to shoppers, both online and at brick-and-mortar stores.

The system consists of Nedap's !DCloud software that captures and manages read data, as well as handheld readers from Zebra Technologies. The 55 stores with POS and EAS systems utilize Nedap's !DGate RFID readers at their entrance, as well as !DPOS readers at cash registers. Celio initially began tagging all products at the point of manufacture in 2016.

"Having the right product at the right place at the right time becomes more and more important in a super-customer-centric world," explains Sylvie Leclercq, Celio's RFID project manager. rfidjournal.com

'Inside the LPRC IMPACT Conference' 2018
An Eight-Episode Series Presented by Sensormatic

Assessing The Real-World Impact of LP Efforts
The LPRC Delivers Evidence-Based Solutions and Actionable Results

LPRC Board of Advisors

Industry Impact & Future Direction
Helping to Steer the Industry’s Only Academic Research Effort

Brian Bazer, Sr. Director of Loss Prevention, rue21, & Chairperson of the LPRC Board of Advisors
Shannon Hunter, VP, LP & Sustainability, Office Depot, & Vice Chair of the LPRC Board of Advisors
Eric Buttlar, Vice President, Asset Protection, Best Buy, & LPRC Board Member

In our 8th and final episode in this LPNN series, we speak with three members of the Loss Prevention Research Council’s Board of Advisors who are helping steer the effort with Dr. Read Hayes, Director of the LPRC, and his team.

With years of LPRC involvement, Brian Bazer, Shannon Hunter, and Eric Buttlar talk about why the LPRC has been so successful over the years and what the future holds, as the only academic resource in the LP/AP industry bringing together retailers, solution providers, manufacturers, and government agencies to solve the problems of today and potential problems of the future.

From utilizing evidence-based research to developing peer relationships, learn how the LPRC can help you contribute to your organization at a much higher level.

As a retailer, the LPRC can help you work smarter, not harder, leveraging the wisdom of the crowd without reinventing the wheel. As a solution provider, the LPRC allows you to hear directly from the voice of the customer.

Get involved today! Learn more at lpresearch.org
 

Exclusive Sponsor:

See more of our 2nd LPRC series here.
Watch our 1st series here.
Take the time to learn. As this is the LP/AP academic "Think Tank".

A Surprising Contender That Might Dominate Grocery E-commerce
A year ago, about four months after Amazon started operating Whole Foods, I surveyed consumers on how they felt about the new Whole Foods. At that time, about half of those who shopped at Whole Foods said it wouldn’t change how much they shopped there, and that’s still true today. What has changed is how many people are more likely to shop at Whole Foods; that number has jumped from 19% to 30%. Clearly, Amazon has improved the perception of how it is running Whole Foods, which has fewer detractors than a year ago.

The vast majority of grocery shopping still happens in stores, and retailers with large store footprints will continue to capture significant traffic. However, grocery e-commerce is growing, with estimates showing that it exceeded $20 billion in 2018 for the first time. Furthermore, it’s forecast to hit $100 billion between 2021 and 2023. Those sound like impressive numbers until you realize the U.S. grocery market is about $1 trillion. In other words, grocery e-commerce has finally hit a 2 percent share, and it could rise to 10 percent in the next several years. That’s an incredibly fast growth rate, but there’s a long way to go. Texas-based supermarket H.E.B., which has $21 billion in revenue and 340 stores, does about the same business as all grocery e-commerce in the country. In comparison, revenue for Whole Foods, which has almost 160 more stores, was $16 billion in 2017, prior to its financials being incorporated into Amazon’s. One analogy to consider is that gas stations do more revenue in the United States than all e-commerce combined, grocery or otherwise. shelftalk.net

Stolen Artwork Is All Over Amazon — And Creators Want The Company To Do Something About It

U.S. voices concern as India's e-commerce restrictions hit Amazon, Walmart – sources

How To Check If Your Online Identity Has Been Stolen

ORC News
Sponsored by Auror
 

Shelbyville, TN: Shoplifters carry out 323 Ink Cartridge valued at over $11,000
More than $11,000 worth of computer ink cartridges were stolen early Sunday morning in one of the most costly shoplifting incidents in recent Shelbyville history. A man and woman entered Walmart shortly before 3 a.m. and spent slightly over an hour, Shelbyville police said. “Both suspects proceeded to the electronics department,” officer Darrell Birdsong said in his report. “They put 323 ink cartridges in a plastic container in a shopping cart.” The cartridges’ total value was $11,427.68, Birdsong’s report said. The suspects exited through the Garden Center emergency door. “The suspects had a third party waiting in a vehicle who drove to the exit to pick them up,” Birdsong said. t-g.com

Canandaigua, NY: Alias names surface for serial Sephora shoplifter
The trail of names and criminal charges for Isabella Kuo seems reminiscent of the movie “Catch Me If You Can.” Isabella Kuo is charged with two counts of third-degree burglary in Ontario County after allegedly stealing from the Sephora store in Eastview Mall in Victor, a store from which she is banned.

“We have multiple alias names for Ms. Kuo,” said Ontario County Assistant District Attorney Nathan Thomas. “She wasn’t cooperative with authorities when she was charged and wouldn’t sign the trespass notice.” So far Kuo has been known as Isabella R. Kuo, Adria B. Kuo, Adria Belle Kuo, Adria Isabella Kuo and Adria Kuo. In 2008, she legally changed her name from Adria Belle Kuo to Isabelle Rowan Kuo.

Back in October First Assistant District Attorney Jason MacBride alleged that Kuo entered the Sephora store to steal goods and would then sell the pricey ticketed items online. Court records show Kuo has had multiple incidents with Sephora stores across the country. She was banned from Sephora in connection with an incident at a California store and was also charged in connection with a theft from the chain at the Destiny USA mall in Oneonta County. monroecopost.com

Update: Australia: Baby Formula: ‘Totally inaccurate to say that there is a crisis’: Expert rules out baby formula rorts
 A Sydney family ran an expansive crime empire that stole and illegally exported thousands of tins of baby formula to China, police allege. On Monday, police said they had arrested six people – including four from the same family – over the alleged coordinated theft of more than 4000 tins of baby formula. The syndicate, allegedly headed by a 48-year-old woman, handled more than $1 million worth of stolen goods in the past year and may have run their empire over a number of years. Now, One Nation Leader has chimed in, saying the solution is to manufacturer more baby formula. “It’s industry that we could actually take on,” she said. It comes after Macquarie Radio exclusively exposed baby formula rorts across New South Wales. A2 Asia Pacific chief executive Peter Nathan says “there’s a lot of hype which is totally inaccurate in this whole debate”. “It is totally inaccurate to say that there is a crisis.” 2gb.com

Grand Island, NE: Police halt man outside Walmart with $2,700 worth of merchandise

Home of the Industry's Original
On the Move
 

Submit Your New Hires/Promotions
or New Position
See all the Industry Movement

Featured Job Listings
Sponsored by NuTech National
Feature Your Job Here For 30 Days -
70% Aren't On the Boards
Post your job listing

Upcoming Events

Ohio Grocers Association 2019 LP Summit Feb. 13 CAL-ORCA Annual Training Conference Feb. 20 Appriss Retail User Conference Feb. 25-27 ISCPO 2019 Conference March 6-7 LPRC Supply Chain Protection Summit Mar. 12 IAI Elite Training Day April 3-4 ISC West April 9-12 RILA AP Conference 2019 May 5-8 RLPSA Connect May 14 CNP Expo 2019 May 21-24 NRF Protect June 11-13 The D&D Daily 'Live at NRF Protect' June 14 RLPSA Conference 2019 Aug. 4-7

See More Events

Recruiting?
Get your job e-mailed to everyone... everyday
Post on our Featured Jobs Board!

Not getting the Daily?
Is it ending up in your spam folder?
Please make sure to add d-ddaily@downing-downing.com to your contact list, address book, trusted sender list, and/or company whitelist to ensure you receive our newsletter. 
Want to know how? Read Here

SUBSCRIBE

FEEDBACK

www.downing-downing.com

Advertise With The D&D Daily

36615 Vine Street, Suite 103
Willoughby, OH 44094
440.942.0671
copyright 2009-2019
all rights reserved globally