With huge growth in e-commerce in recent years and the number and type of digital touchpoints and digital services to consumers growing, the need for robust cybersecurity risk management strategy remains critical in the retail sector.

UK online sales accounted for 27% of total retail sales in 2024[1] and this is projected to increase in 2025, reflecting the continued shift towards digital shopping platforms. In parallel with that, 34% of UK retailers identify cyber and data risks as their biggest threats, with 70% ranking them in their top three risks.[1] Indeed, cyberattacks, fraud and data leaks cost the retail sector £11 billion in 2023.[3]

Digital transformation in retail continues at pace. Modern customers choose to browse, explore a brand and complete purchases both online and offline very fluidly. Harmonised omnichannel presence brings customer satisfaction, brand loyalty and increased sales.

Retailers are also leveraging tech and data for operational purposes: to forecast consumer trends using data analytics; to enhance customer engagement through digital platforms; to automate processes; to collaborate with partners to share data insights; for real-time monitoring of supply chain operations; and for AI powered pricing and marketing strategies.

Technologies include chatbots, e-commerce platforms, smart shelves, mobile applications, voice-assisted shopping, AI assistants and contactless payments. In addition to cyber vulnerability arising from accelerated new tech adoption, brick-and-mortar stores with staff, cashiers and physical point-of-sale (POS) systems present further vulnerability hotspots.

Payments processed via geographically distributed financial networks or via cross-border distributed payment infrastructures throw up yet more modern data security challenges.

While larger retailers take confidence from investment in technology to safeguard operations, security teams remain vigilant in the face of ever-evolving cybersecurity threats. This is the case especially as AI continues to optimise not only threat detection, but also vulnerability detection, which is exploited by cyberattackers increasing the sophistication of attacks. Where there is less resource, where outdated or unpatched software is relied on or only basic security tools are deployed, smaller retailers will be highly vulnerable to cyberattacks.

Most significantly from a cyber resilience perspective, whether a retailer is large or small, with the newest tech solutions or none, it is often simply human error at the root of a cyber incident.

The boxes below highlight the key areas of cyber risk for retailers, with key mitigation areas for improving cyber crisis management processes explored: