SecurityScorecard analyzed 1,444 domains in the retail industry with an IP footprint of at least 100. The retail industry had the second-lowest application security performance among major sectors. Retailers also ranked dead last in terms of their ability to protect against social engineering attacks. Criminals employing phishing and other social engineering methods to steal data and commit fraud were likely to have more success with retailers than organizations in any other industry, the firm says. The findings are important because criminals target retailers more so than almost any other sector apart from healthcare and banking and finance.”]