2/13/14


Massive Target Hack Traced Back To Phishing Email
Posted: 02/12/2014 3:56 pm EST

Full story at:  http://www.huffingtonpost.com/2014/02/12/target-hack_n_4775640.html

Hackers gained access to Target's computer system and stole financial and personal data of 110 million shoppers by tricking an employee at an outside vendor into clicking on a malicious email, according to a report Wednesday by security blogger Brian Krebs.

An employee at Fazio Mechanical, a Sharpsburg, Pa.-based heating, ventilation and air-conditioning company with access to Target's network, fell for a "spear phishing” attack, in which hackers send malware-laced emails that appear to come from trusted sources to take over victims' computers, according to Krebs, who cited sources close to the investigation.

The company said it had remote access to Target’s computer network “for electronic billing, contract submission and project management.”

Krebs reported that Fazio Mechanical may not have realized the phishing attack at first because the company was using a free anti-malware program that “does not offer real-time protection against threats.”


---------------------------------------------------------------------------

2/3/14
Credit Union Sues Target Over Credit Card Hack
By Chris Morran February 3, 2014

(me and the sysop)A credit union in Pennsylvania has filed a lawsuit, one that could potentially include 100 other credit unions as plaintiffs, against Target in an attempt to recoup is losses in the wake of the retailer’s recent massive data breach.

The Pittsburgh Post-Gazette reports that First Choice Federal Credit Union in New Castle, PA, filed the suit in a federal court in Pittsburgh on Friday.

Details at:  http://www.post-gazette.com/local/region/2014/02/03/New-Castle-credit-union-sues-Target-for-costs-associated-with-data-loss/stories/201402030116

Topix