Retail Cyberattacks Surge in 2025, with Espionage on the Rise
The retail sector faced a sharp increase in cyber incidents in 2025, with 997 security breaches recorded by Verizon 806 of which involved confirmed data disclosure. This marks a significant rise from 2024, when 837 incidents and 419 confirmed breaches were reported. The 2026 Verizon Data Breach Investigations Report highlights that system intrusion, web application attacks, and social engineering accounted for 95% of all retail breaches, mirroring trends from the previous year.
External threat actors dominated, making up 99% of incidents, while 85% were financially motivated. However, espionage-driven attacks surged, rising from 1% in 2023 and 9% in 2024 to 19% in 2025. The most commonly compromised data included internal information (84%), credentials (26%), and secrets (20%).
The leading attack vectors in retail were exploitation of vulnerabilities (42%), credential abuse (14%), and phishing (9%). Verizon’s findings are based on 31,000 real-world security incidents across 145 countries, with 22,000 confirmed breaches analyzed. The report underscores the growing sophistication of cyber threats targeting the retail industry.
Source: https://chainstoreage.com/verizon-almost-1000-digital-security-breaches-hit-retailers-2025
Verizon cybersecurity rating report: https://www.rankiteo.com/company/verizon
"id": "VER1779209354",
"linkid": "verizon",
"type": "Breach",
"date": "1/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'retail', 'type': 'retail'}],
'attack_vector': ['exploitation of vulnerabilities',
'credential abuse',
'phishing'],
'data_breach': {'type_of_data_compromised': ['internal information',
'credentials',
'secrets']},
'date_detected': '2025',
'date_publicly_disclosed': '2026',
'description': 'The retail sector faced a sharp increase in cyber incidents '
'in 2025, with 997 security breaches recorded by Verizon, 806 '
'of which involved confirmed data disclosure. This marks a '
'significant rise from 2024, when 837 incidents and 419 '
'confirmed breaches were reported. The 2026 Verizon Data '
'Breach Investigations Report highlights that system '
'intrusion, web application attacks, and social engineering '
'accounted for 95% of all retail breaches. External threat '
'actors dominated, making up 99% of incidents, while 85% were '
'financially motivated. Espionage-driven attacks surged, '
'rising from 1% in 2023 and 9% in 2024 to 19% in 2025. The '
'most commonly compromised data included internal information '
'(84%), credentials (26%), and secrets (20%). The leading '
'attack vectors in retail were exploitation of vulnerabilities '
'(42%), credential abuse (14%), and phishing (9%).',
'impact': {'data_compromised': True},
'motivation': ['financial', 'espionage'],
'references': [{'date_accessed': '2026',
'source': 'Verizon Data Breach Investigations Report'}],
'threat_actor': 'external',
'title': 'Retail Cyberattacks Surge in 2025, with Espionage on the Rise',
'type': ['system intrusion', 'web application attacks', 'social engineering']}