Retail Organizations Applaud New ORC Legislation
Retailers welcome Senate bill dealing with organized retail crime
The Senate has introduced legislation that would create new tools to assist in the federal investigation and prosecution of organized retail crime (ORC) and help recover lost goods and proceeds

The “Combating Organized Retail Crime Act of 2023” was introduced by Senators Charles “Chuck” Grassley (R-IA) and Catherine Cortez Masto (D-NV). It would establish a coordinated multi-agency response and create new tools to tackle evolving trends in organized retail crime. A companion bill is expected to be introduced next week in the House of Representatives.

“Retailers face security-related challenges on many fronts, and ORC continues to be a formidable threat in communities across the country,” said David French, senior VP of government relations, National Retail Federation. “This legislation is a critical step to increase collaboration between federal law enforcement agencies, retail investigators and state agencies to more effectively combat these increasingly violent criminal activities.”

In a recent survey of retail asset protection managers conducted by the Retail Industry Leaders Association, more than 86% of respondents said retail associates had been verbally threatened with bodily harm, nearly 76% reported associates were physically assaulted or threatened with a weapon, and more than 40% of associates were harmed by a weapon used by an ORC criminal.

“Organized retail crime is leading to more brazen and more violent attacks in retail stores and centers throughout the country, putting employees and consumers at risk,” said Tom McGee, president and CEO of ICSC. “In light of the increased number of attacks and lost revenue, we’re pleased that this legislation will broaden the statutes dealing with the transport of stolen goods and provide additional resources to law enforcement at both the federal and state level.”

The legislation is supported by ICSC, the National Retail Federation, the Retail Industry Leaders Association, the U.S. Chamber of Commerce, the Peace Officers Research Association of California, the Federal Law Enforcement Officers Association, Sergeants Benevolent Association NYPD and the PASS (Protect America’s Small Sellers) Coalition. chainstoreage.com

   RELATED: ICSC Welcomes Legislation Addressing Threat of Organized Retail Crime


35,000-Foot View of Increasing Violent ORC
Why are retail thefts on the rise across the country?

It’s organized retail crime — where the thefts are planned, and part of organized rings.

"We're getting more information on 2020 and '21, because the pandemic and then all the wild looting and burning and all the serious crimes it started affecting retailers in a different way, have kind of kind of skewed what we've got there," said Read Hayes, a research scientist at University of Florida and director of the Loss Prevention Research Council.

And it could only be a matter of time before it affects Americans’ wallets and how they shop. But the NRF says this is something bigger than shoplifting. It’s organized retail crime — where the thefts are planned, and part of organized rings targeting everything from high-end items to razors and toothpaste.

"These are all items that are portable and they're very valuable and are readily converted to cash by the offender. So they fit the what we call the 'crave model,'" Hayes said. "But handbags and shoes, particularly handbags, are a very, very high loss right now."

Lisa LaBruno with the Retail Industry Leaders’ Association says many shoplifters feel it’s a high reward, low risk crime.

"It’s getting more brazen. It’s getting more violent. And that’s caused in part by the lack of accountability that these criminal actors are being held to," LaBruno said. "Which I think is a significant factor. These criminal actors feel as though nothing’s going to happen to them."

Online marketplaces are also enabling shoplifters, allowing them a quick cash turnaround— while remaining anonymous. The Biden administration is hoping to slow things down. Last December the president signed the Inform Act.

In addition to federal response Illinois and Colorado now have their own retail theft task forces. And cities from coast to coast are implementing local task forces. scrippsnews.com
 

Can SkyCop Cameras Deter Crime & Increase Police Accountability?
As Officers Beat Tyre Nichols, a Crime-Fighting Camera Watched Over Them

A SkyCop camera in Memphis provided overhead footage that was instrumental in shaping the public’s understanding of what unfolded.

It was one of the hundreds of SkyCop cameras, as they are known, that the Memphis Police Department has installed around the city. It was watching from above, recording as Mr. Nichols was beaten and then as officers and medics delayed providing aid. He died three days later.

The overhead footage, publicly released on Friday along with some of the officers’ body camera videos, has been widely regarded as critical in shaping the public’s understanding of what unfolded after the police pulled over Mr. Nichols that night, by offering an unobstructed bird’s-eye view.

Camera systems like SkyCop, which have been adopted by police departments around the country, have been criticized by activists and privacy advocates as a costly investment that does little to deter crime while adding to the overbearing presence that the police often have in neighborhoods — especially poor ones — where the cameras have proliferated.

Yet in this case, the round-the-clock camera has been a vital tool for accountability as Mr. Nichols’s death has unleashed pain and anger in Memphis and around the country. nytimes.com


54 Mass Shootings So Far in 2023
Victims identified in 6th mass shooting in 13 days to rock California
Three women, all out-of-state tourists, were killed and four people were injured in the second mass shooting to erupt in Los Angeles County in eight days -- the sixth in California this month, according to police.

The mass-casualty shooting unfolded around 2:30 a.m. when police received multiple 911 calls of a shooting in progress at a short-term luxury rental home, according to the Los Angeles Police Department.

The Beverly Crest shooting came just eight days after a Jan. 21 mass shooting in the Los Angeles County city of Monterey Park, where 12 people were fatally shot at a dance studio allegedly by a 72-year-old man, who died from an apparent self-inflicted gunshot wound when police cornered him in a van in Torrance, California.

Nationwide, there have been 54 mass shootings since the start of the year, according to the Gun Violence Archive. President Biden is calling for an assault weapons ban. abcnews.go.com


NYC Store Owners Continue to Fight for Action Against Theft
Inside City Hall: Coalition of store owners urge action against shoplifting
Mayor Eric Adams last week during his State of the City address vowed to protect New York’s small business owners from shoplifting — as retail theft rates remain high across the five boroughs.

Meanwhile, retail and grocery industry groups recently joined together to form a new coalition called the Collective Action to Protect Our Stores. They are asking the city’s district attorney’s to form specialized units to address shoplifting directly.

On Monday night, the founder of that group, Nelson Eusebio, and Vice President of the Supermarket Association Nallely de Jesus joined “Inside City Hall” to talk about all this and more. ny1.com


Mass shootings are just one part of the US’s gun problem

Violent crime plagues some Indy bars, yet the state does little to enforce its policies
 

US: 104.1M Cases - 1.1M Dead - 101.3M Recovered
Worldwide: 675.3M Cases - 6.7M Dead - 647.7M Recovered

Private Industry Security Guard Deaths: 362   Law Enforcement Officer Deaths: 830

The Impact of Ending the COVID Public Health Emergency
What the end of the COVID-19 emergencies in the US means
The end of the public health emergency will mean that Americans start paying more for certain COVID-19 health measures, but the increase likely won't all be felt at once.

One of the most obvious new costs will be at-home rapid tests, which have been free for most of the time they've existed. People can get eight free tests a month covered by their insurance, for example, or order free tests in the mail from the government.

But that ends with the public health emergency on May 11, Kates at KFF said. The same is true for walking into a clinic or doctor's office to get a test. That could come with costs in the future, whereas it is free under the emergency order.

But vaccines will remain free for people with insurance. Because of work in Congress and by the Centers for Disease Control and Prevention, COVID-19 vaccines are mandated to be covered by insurance -- through the end of the public health emergency and even once the government stops buying and distributing them for free. abcnews.go.com


$45 Billion in COVID Theft
GOP Oversight chairman sounds alarm over 'massive amounts' of COVID 'theft' as reports say billions missing
House Oversight Committee chairman James Comer, R-Ky., on Wednesday sounded the alarm over "massive amounts of fraud" taken from U.S. COVID-19 programs after reports found that tens of billions were stolen or simply went missing during the pandemic.

Comer is holding a hearing to investigate COVID-19 fraud. Government watchdogs and the Department of Labor (DOL) itself have indicated that COVID-19 waste, fraud and abuse cost the U.S. up to $163 billion throughout the pandemic.

The Government Accountability Office (GAO) found this week that the DOL spent $45 billion on fraudulent claims for unemployment insurance during the pandemic. It also stated that the department has yet to implement reforms that might prevent future fraud. foxnews.com


Is the Remote Work Bubble Bursting?
Analysis: Remote Work Bubble Begins to Pop

At the pandemic’s three-year mark, many employees and employers are at odds over where work gets done.

Early indicators suggest we might be witnessing a remote work bubble that’s being punctured by some employers who want their employees in the office—at least two or three days a week.

A recent Wall Street Journal article carried the headline, “The Job Market for Remote Workers Is Shrinking.” The Jan. 24 article reported: “Remote jobs made up 13.2% of postings advertised on LinkedIn last month—down from 20.6% in March. Other job sites such as Indeed.com and ZipRecruiter also report declines in remote listings.”

At the three-year anniversary of the pandemic, some employers are recognizing the erosion of their company cultures as well as diminished camaraderie of work teams because co-workers spend so little time together in person. tcbmag.com


How will life change once the COVID-19 emergency ends?

China is tracking ‘Orthrus’ – an emerging, more transmissible Covid variant

Cybersecurity Investments Are On the Budget Chopping Block
CISOs to face new budget hurdles in 2023 as economic anxiety lingers
Pressure is rising on budgets amid concerns about an economic downturn and CISOs will need to convince board members and the C-suite that cyber resilience will help improve the bottom line, according to Forrester.

Corporate boards and the C-suite still largely view cybersecurity as a cost center, raising the possibility that critical investments will be rolled back or eliminated as companies make cuts.

But CISOs need to make the case that cyber resilience will help generate customer trust and loyalty. It falls on them to illustrate cuts to the security budget will put the company at risk of regulatory scrutiny, higher insurance premiums and the risk of losing customers to rival firms.

“Linking security to revenue — or the loss thereof — is critical to defending the security budget and establishing security as a core competency, and the cost of doing business,” Jess Burn, senior analyst at Forrester, said via email.

The Neustar International Security Council showed less than half of companies surveyed across the globe said they were getting adequate budget allocations to support their cybersecurity needs, according to a report released last week.

Earlier this month, PwC released a report showing about half of global CEOs planned to increase their investments in cybersecurity or data privacy, adapting supply chains or expanding their geographic footprint.

“That being said, CISOs are trying to be good stewards of the level of investment by optimizing their technology footprint and leveraging automation to do more with less,” Joe Nocera, PwC partner leader, cyber, risk and regulatory marketing, said via email. cybersecuritydive.com


Something to Watch as Companies Expand Electric Delivery Fleets
Vulnerabilities could let hackers remotely shut down EV chargers, steal electricity

The emerging market’s uneven response to fix the flaws suggests cybersecurity could be a growing concern in electric car charging networks.

Two vulnerabilities in a commonly used networking protocol for electric vehicle chargers could allow hackers to remotely shut down charging stations or manipulate docking stations to recharge for free, according to a report from cybersecurity firm Saiflow.

“Essentially, if a hacker exploits these two vulnerabilities, he can create a denial of service which would mean disrupting or disconnecting a single charger or at scale they can execute distributed denial of service which would mean taking down and disconnecting all chargers connected to that network,” said Ron Tiberg-Shachar, CEO of Saiflow, which sells cybersecurity services to the EV charger market.

A fix for the vulnerabilities is available, but Tiberg-Shachar pointed out that the burgeoning EV industry has been slow to deploy the update. The discovery of the flaws and the market’s uneven response suggests cybersecurity could be a growing concern as Washington has made building infrastructure for electric cars a priority. The 2021 bipartisan infrastructure law gave states $7.5 billion over five years to install electric vehicle charging stations. Last September, the administration launched an initiative to build out charging networks along 75,000 miles of interstate highways.

Those EV chargers are connected to a management system platform, usually on the cloud, that allows operators to track the infrastructure stability, energy management, EV charge requests and handles billing. Most chargers use the open charge point protocol (OCPP) — a popular open-source communication standard — to communicate between electric vehicle charging stations and management systems.

Using the OCPP protocol with the embedded vulnerability, a hacker can imitate and hijack a connection between the charger and the management platform. With that access, a hacker can shut down that group of chargers that use OCPP, whether those are installed in a private home or at a highway gas station. They can also use other identifiers to steal energy from those chargers. Even more, the vulnerability gives some access to the surrounding components, said Tiberg-Shachar. cyberscoop.com


Softening Cyber Insurance Market?
Skyrocketing Cyber Insurance Premium Growth May Slow

Increased Competition and Capital Suggest Softening Market, Says Marsh Executive

The cyber insurance market shows signs of softening after eight quarters of back-to-back premium increases, an industry executive told a U.K. parliamentary committee investigating the effects of ransomware.

Spikes in ransomware attacks that began in 2018 resulted in "a steady price increase, year over year" in cyber insurance premiums, starting in the fourth quarter of 2019, said Sarah Stephens, head of Marsh's international cybersecurity practice. The average premium increase during the third quarter of 2022 compared to the previous year was 50%, she testified Monday before Parliament's Joint Committee on National Security Strategy. The average year-on-year premium increase in the second quarter was 70%, she added.

Stressing that she wasn't making predictions about the direction of premium rates, Stephens said that Marsh is seeing indicators of increased competition and capital in the cyber insurance industry - "signs that the insurance market might soften for this type of insurance." govinfosecurity.com
 

Researchers Uncover Packer Used by Several Malware to Evade Detection for 6 Years
A shellcode-based packer dubbed TrickGate has been successfully operating without attracting notice for over six years, while enabling threat actors to deploy a wide range of malware such as TrickBot, Emotet, AZORult, Agent Tesla, FormBook, Cerber, Maze, and REvil over the years.

"TrickGate managed to stay under the radar for years because it is transformative – it undergoes changes periodically," Check Point Research's Arie Olshtein said, calling it a "master of disguises."

Offered as a service to other threat actors since at least late 2016, TrickGate helps conceal payloads behind a layer of wrapper code in an attempt to get past security solutions installed on a host. Packers can also function as crypters by encrypting the malware as an obfuscation mechanism.

The infection chain involves sending phishing emails with malicious attachments or booby-trapped links that lead to the download of a shellcode loader that's responsible for decrypting and launching the actual payload into memory. thehackernews.com


10 cybersecurity certifications to boost your career in 2023

Reality check: Is ChatGPT really the next big cybersecurity threat?

Jewelry Fence For Year-Long Violent Manhattan Diamond District Robbery Spree Convicted

Queens Jeweler Convicted In $1.8M+ Luxury Watch Robbery And Money Laundering Scheme

Jamaica Colosseum Mall Jewelry Store Operator Laundered Stolen Watches from Armed Robberies of Luxury Jewelers

TANISLAV YAKUBOV, a/k/a “Steve,” on three counts in a Superseding Indictment, including one count of money laundering conspiracy and two counts of making false statements to federal law enforcement agents. YAKUBOV is scheduled to be sentenced on June 1, 2023.

U.S. Attorney Damian Williams said: “Stanislav Yakubov agreed to purchase hundreds of thousands of dollars’ ($1.8M listed) worth of diamond-encrusted, stolen luxury watches that had been taken during (10 listed) violent robberies, the victims of which included jewelers from Yakubov’s own community. Yakubov’s actions fueled a year-long robbery spree that targeted nearly a dozen victims, and his conviction sends a message to the community that the purchase and laundering of stolen property will be vigorously investigated and prosecuted.”

From at least in or about October 2019 up to and including November 2020, STANISLAV YAKUBOV, and others known and unknown, agreed to purchase stolen watches worth up to hundreds of thousands of dollars, each that had been taken during armed robberies. The watches owned by victims targeted in the robberies included diamond-encrusted Richard Mille, Rolex, Audemars Piguet, and Patek Philippe watches owned by jewelers as part of the jewelers’ businesses based in Manhattan’s Diamond District and elsewhere.

YAKUBOV, 42, of Queens, New York, was convicted of one count of conspiracy to commit money laundering, which carries a maximum prison term of 20 years, and two counts of making false statements to federal law enforcement agents, each of which carry a maximum prison term of five years. justice.gov


Fontana, CA: Officers arrest suspect who allegedly stole $750,000 worth of items from stores
On Monday, 01/30/2023, After an investigation lasting several months, Fontana Police Officers from the Fugitive Apprehension Team and Multiple Enforcement Team tracked down a burglary suspect stealing from The Home Depot and Lowes since 2016. This suspect, identified as Jaime Ruiz (31), has been stealing power tools for several years. Loss Prevention Agents estimate that Ruiz has stolen three-quarters of a million dollars in merchandise from their stores throughout southern California in this time. This morning officers served search warrants in the City of Riverside and Colton. As a result, more than forty-five thousand dollars in stolen merchandise was recovered. The recovered property was returned to the stores. Ruiz and a second suspect Jorge Duran (59), were arrested and booked at West Valley Detention Center.  fontanaheraldnews.com


Nags Head, NC: Three suspects in Manteo theft also charged with $15,000 Ulta larceny
The three suspects charged with theft from a Manteo ABC store on the night of Jan. 27 are also facing charges involving larceny from the Ulta store in Nags Head as part of a reported spree that included a high- speed getaway attempt, responses from multiple law enforcement agencies and, ultimately, their being taken into custody around the OBX Bowling Center in Nags Head, according to police sources. The three who were arrested and face charges in both towns are Shaquan Copeland, 29, of Portsmouth VA, Tynasia Smith, 26, of Norfolk, VA and Shaquilla Cuffee, 28, also of Norfolk. According to Nags Head Police Chief Perry Hale, that department was alerted to theft at the Ulta store at about 6:30 p.m. and a little later, the suspects made their way to the Manteo ABC location. The Manteo Police incident report stated that at the ABC, they stole several bottles of alcohol valued at about $780. Hale said that at Ulta, the suspects made off with perfume valued at nearly $15,000. northcentralpa.com


Seattle, WA: Five Arrested in University Village Retail Theft Operation
The Seattle Police Department recognizes organized retail theft negatively impacts many local businesses, and with a high concentration of high-end retailers, University Village in the University District has become a frequent target. Recently, SPD’s Community Response Group officers have been conducting organized retail theft operations throughout the city to prevent and deter theft and shoplifting. This past Thursday, January 26th, GRG officers partnered with seven U-Village retailers located within the 2600 block of Northeast University Village Street to look for people suspected of committing the crimes of theft and shoplifting. Officers also addressed other crimes as needed. Throughout the day, CRG officers working with store employees identified five shoplifting subjects who were observed concealing merchandise and exiting stores without paying for the items. Officers arrested four 16-year-old and one 18-year-old female suspects and recovered stolen merchandise totaling more than $1,000.00. The five suspects face charges of shoplifting, which is a misdemeanor, so were not booked into jail at this time. However, SPD will be requesting criminal charges be filed. spdblotter.seattle.gov


Willowbrook, IL: 3 charged with stealing $1,668 in perfume from Walgreens store, fleeing police
Three people have been charged with stealing perfume and other items from a Walgreens store in Willowbrook on Tuesday, then leading police on a chase through several communities that ended in a crash with a patrol vehicle. Kyla Simmons, 20, of the 3300 block of West Arthington Street in Chicago; Duane Robinson, 23, of the 7900 block of South Wabash Avenue in Chicago; and Monteriana Williams, 20, of the 400 block of North Austin Boulevard in Oak Park, each are charged with burglary and retail theft. dailyherald.com


Warrington Township, PA: Couple wanted for thefts of over $1000 of Nicorette Gum from Target

Suffolk County, NY: Woman used stolen credit card at Best Buy and Michael’s, wanted for grand larceny