Protect against cyber security threats in retail and hospitality
Phishing-resistant MFA the key to preventing account takeovers, securing shared devices, and protecting sensitive dataRead the solution brief
Stop account takeovers while enhancing customer experience
The high availability of sensitive data including payment card information (PCI) and employee and customer personal identifiable information (PII), makes retail and hospitality organizations a lucrative target for cyberattacks including phishing, ransomware, and data theft.
A core part of a strong Zero Trust cybersecurity approach is multi-factor authentication (MFA), but not all forms are created equal in terms of security or user experience. Retail and hospitality industries are consumer and customer-facing and the MFA solution should enable a frictionless experience.
Legacy authentication such as usernames and passwords can be easily hacked and increase IT help desk costs related to password resets. Mobile-based authentication are highly susceptible to attacks and attribute to MFA fatigue while also unable to be used in certain environments.
Yubico offers the YubiKey for highest-assurance phishing-resistant two-factor, multi-factor, and passwordless authentication, helping retail and hospitality organizations stop phishing attacks, ransomware, and account takeovers, all while protecting sensitive customer and financial data, and driving regulatory compliance.
Hyatt Hotels is going passwordless
Modern phishing-resistant MFA eliminates authentication fatigue for colleagues, while also creating improved guest experiences. YubiKeys work seamlessly with Hyatt’s existing Microsoft’s environment creating elevated security for employees and guest data.
The cyber security benefits for retail and hospitality are within your reach with the YubiKey.
Secure access to systems, apps and data while modernizing device security
YubiKeys ensure that only authorized users have access to PII data and critical systems, while also securing access to POS terminals, shared workstations/devices, and RFID readers. Even provide strong security for customer accounts and loyalty programs by leveraging YubiKeys. They protect anyone, anywhere. YubiKeys are also easily re-programmed, making them suitable for seasonal and temporary workers, and they ensure self-service password resets, drastically reducing IT help desk costs.
Protect call center agents and any mobile-restricted environments
Mobile-restricted environments historically have been an issue for mobile-based MFA methods using SMS, push or apps. The YubiKey offers easy and secure authentication when there is no cellular connection or where mobile devices are restricted. YubiKeys are highly suitable for users that can’t, won’t, or don’t use mobile authentication, helping you achieve 100% MFA coverage and satisfy your cyber insurance MFA requirements.
Drive compliance to industry regulations and authentication standards
The Payment Card Industry Data Security Standard (PCI DSS) v4.0 section 3 & 8 requires the use of strong MFA for all accounts that have access to cardholder data. Additionally Requirement 12 of PCI DSS v4.0 details the need for an information security policy and program that is well adopted, documented, and includes user training. Strong customer authentication is also a key provision of the Payment Services Directive (PSD) 2, a process that seeks to make online payments more secure by reducing fraud.
YubiKeys enable strong verification of users keeping organizations compliant with existing and emerging regulations such as PCI DSS, EU Payment Services Directive 2 (PSD2), GDPR, and more. YubiKeys are also FIDO2/WebAuthn compliant streamlining workflows and increasing productivity, protecting against the most common types of phishing attacks and allow for a simple “plug and Play” set of instructions for non technical users.
Protect your entire supply chain and eliminate vulnerability gaps
YubiKeys offers secure, convenient, and scalable security making it easy for you and your supply chain vendors to deploy strong authentication. Yubico solutions, and flexible YubiKey procurement and deployment options through YubiEnterprise Subscription, you can experience an estimated 203% ROI over three years and a reduction of password-related help desk support tickets by 75% by year 3.
With YubiEnterprise Delivery from Yubico, it’s easy for your supply chain to get security keys directly into the hands of their users. Authentication of users is vital along the supply chain, but so is authentication between systems and machines, which is provided by the world’s smallest hardware security module (HSM), the YubiHSM2.
Risk reduction, business growth, and efficiency enabled by YubiKeys
Enter your own company data to create a custom Dynamic TEI study and instantly see how Yubico’s solutions can help your organization!
“We are taking great strides in protecting the safety of our guests and colleagues by requiring phishing-resistant MFA methods for all applications that can expose both PII and Card Holder data. We also believe that having Guest Services colleagues looking down at their phone to complete an MFA response or approval does not portray the message we want, to someone walking past the front desk. It lends itself to the perception the colleague is engaged in their cell phone for social media or other personal activity.
Using a YubiKey not only provides a more seamless experience for the colleague while keeping our data safe, but also allows those colleagues to keep their cell phones stored away while performing guest-facing roles.”
Hyatt Hotels Corporation,
Director of Identity, Access, and Endpoints
Protecting against modern cyber threats in retail and hospitality
Learn how modernizing authentication can secure shared devices, protect sensitive data, and prevent account takeovers while enhancing customer experience.