ARTICLE
12 November 2025

Keep The Season Bright: Holiday Cybersecurity Tips For Retailers

PC
Perkins Coie LLP

Contributor

Perkins Coie LLP logo

Perkins Coie is a premier international law firm with over a century of experience, dedicated to addressing the legal and business challenges of tomorrow. Renowned for its deep industry knowledge and client-centric approach, the firm has consistently partnered with trailblazing organizations, from aviation pioneers to artificial intelligence innovators. With 21 offices across the United States, Asia, and Europe, and a global network of partner firms, Perkins Coie provides seamless support to clients wherever they operate.

The firm's vision is to be the trusted advisor to the world’s most innovative companies, delivering strategic, high-value solutions critical to their success. Guided by a one-firm culture, Perkins Coie emphasizes excellence, collaboration, inclusion, innovation, and creativity. The firm is committed to building diverse teams, promoting equal access to justice, and upholding the rule of law, reflecting its core values and enduring dedication to clients, communities, and colleagues.

Explore Firm Details
The holidays are upon us, and the last thing retailers want to do is respond to a security incident.
United States Technology
Amelia M. Gerlicher
Amelia M. Gerlicher’s articles from Perkins Coie LLP are most popular:
  • with Senior Company Executives, HR and Finance and Tax Executives
  • in United States
  • with readers working within the Banking & Credit and Healthcare industries

The holidays are upon us, and the last thing retailers want to do is respond to a security incident.

Close behind, we're sure, are changes to systems and policies at this time of year. But what can you do now to minimize the likelihood and impact of a cyberattack?

Be suspicious. Human-centered breaches—phishing, social engineering, insider threats—remain a huge threat vector. With emerging AI technologies that can produce faster and better threats, there is all the more reason to be cautious about new requests, unexpected directions, and unusual contacts.

Expect increased activity. We ran down the reasons why and how attackers love this time of yearlast year, and those haven't changed. Consider likely weak points and apply additional resources where possible.

Resist urgency. Attackers rely on a sense of urgency to bypass normal processes and second looks. While there are plenty of reasons to act quickly during the holidays, remain cautious about who is asking for what and why they are in such a hurry.

Stay informed. Keep up with industry news, threat intel, and vulnerability announcements for your key software and vendors. Be prepared to act quickly on both routine and emergency patches.

Track new initiatives. Holiday incentives, offers, and other experiences that collect consumer data can't be immune to required processes. Ensure that only the right data is collected and that it's properly processed, stored, and deleted when no longer needed.

Take notes. What's working? What's not? If you have an incident, how does the incident response plan work? Are there gaps that appear when your teams are understaffed and stretched thin? When there's time to think more long-term, draw on those lessons.

Spread the word. Remind employees of all of the above repeatedly. Vigilance is key, and with all of the other pressures of the holidays, give them permission to slow down and be cautious.

Call in help. If an incident does occur, invoke the incident response and call in help. Include experienced counsel to guide your team through the pressures added by the holidays.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

[View Source]
Authors
Photo of Amelia M. Gerlicher
Amelia M. Gerlicher
See More Popular Content From

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More