In this blog series, our Executive Director Ben Taylor highlights a selection of cybersecurity, physical security, health or natural threat related stories from the past week.

Cybersecurity

Clean Up in the Digital Aisle: Privacy Concerns for E-Commerce Provider

The grocery chain Sobeys Inc. uses a system of “smart” in-store shopping carts developed by Caper. These carts allow customers to scan and pay for their purchases directly at their cart and receive a receipt via SMS or email. Electronic receipts issued by this system via SMS message share a URL that uses an easily predictable format. This system makes it possible to easily obtain the electronic receipts of other customers. These receipts contain a number of personal data points, including the customer’s partial credit/debit/Air Miles card numbers, a full list of purchases, and the date, time, and location of the customer’s purchase.

There is a good lesson learned here for cannabis organizations either currently dealing or looking to expand into e-commerce. Protecting consumer privacy is massively important, particularly as the social stigma around cannabis continues for some, and laws and work policies around its use remain varied throughout the country.

October is Cybersecurity Awareness Month!

As we reported last week, October Is Cybersecurity Awareness Month—previously known as National Cybersecurity Awareness Month—which helps to raise awareness about the importance of cybersecurity across our Nation, ensuring that all Americans have the resources they need to be safer and more secure online. The Cybersecurity and Infrastructure Security Agency (CISA) and the National Cyber Security Alliance (NCSA) are using the overarching theme:

“Do Your Part. #BeCyberSmart.”

This week’s theme has been “Phight the Phish!” in order to bring awareness to email phishing attempts. Phishing attacks can happen to anyone in an organization and educating your employees can help prevent a devastating attack. According to a recent FBI report, Business Email Compromise (BEC) crimes were the most financially devastating type of cyberattack, accounting for nearly $1.8 billion in losses. These types of attacks are successful because they specifically target companies that deal regularly with international wire transfers in large sums. Unlike random phishing attempts that send out indiscriminate messages, BEC scams are highly targeted making them considerably more dangerous. Click here to learn more about how to prevent BEC attacks.

For more on how to raise your organization’s cybersecurity awareness, check out this blog from Gate 15 with some Tips from the Pros!

Physical Security

Man Stabbed, Critically Wounded After Confronting Maskless Woman In Convenience Store

A man was stabbed and critically injured Thursday afternoon, after confronting a woman for not wearing a mask inside a convenience store in the West Town neighborhood. A 48-year-old man inside the store told the woman to put a mask on, and the woman pulled out a knife and stabbed the victim in the abdomen, according to police.  Just last week a similar event happened at an Apple store in New York City where a security guard was stabbed in the abdomen and slashed in the head by a customer who refused to wear a mask.  This is a threat that all retail locations will want to constantly remind staff about. We have recently published a blog detailing some de-escalation resources that may be helpful.

Be sure to check back every Tuesday as we publish our Library Card Series where we highlight one of the resources available in our library!

Check out the latest blog highlighting issues important to cannabis security!