Data Storage Today

CIO Today Network Sites:   Top Tech News  |   CIO Today   |   Mobile Tech Today   |   Data Storage Today
News & Information for Data Storage Professionals
Barium Ferrite (BaFe):
Higher Capacity, Superior
Performance, Longer Archival Life

www.thefutureoftape.com
Wednesday, April 23rd 
The future of tape is here.
This ad will display for the next 20 seconds. Please click for more information, or scroll down to pass the ad, or Close Ad.
Trending Topics:   Security Heartbleed Big Data Cloud Computing Windows XP Data Centers OS X Mavericks
Home
Data Centers
Storage Solutions
Storage Networks
Data Storage Issues
Data Security
DST Press Releases
 
Free Newsletters
Top CIO News
 
Mobile Tech Today
 

CIO Issues

Target Breach Started as E-Mail Phishing Expedition

Target Breach Started as E-Mail Phishing Expedition
February 14, 2014 9:38AM

Bookmark and Share
Data security reporter Brian Krebs says that Target's security breach started with a "malware-laced e-mail phishing attack" on employees of Sharpsburg, Pa.-based Fazio Mechanical Services. Phishing e-mails are a common tactic thieves use to try to get people to click on a malicious link or download an infected file.

Neustar, Inc. (NYSE: NSR) is a trusted, neutral provider of real-time information and analysis to the Internet, telecommunications, information services, financial services, retail, media and advertising sectors. Neustar applies its advanced, secure technologies in location, identification, and evaluation to help its customers promote and protect their businesses. More information is available at www.neustar.biz.

The data thieves who attacked Target Corp. stole the network credentials of a heating and refrigeration contractor via phishing e-mails sent to the company's employees, according to the blogger who first revealed the breach.

Data security reporter Brian Krebs blogged Wednesday at KrebsonSecurity.com that Target's breach started with a "malware-laced e-mail phishing attack" on employees of Sharpsburg, Pa.-based Fazio Mechanical Services Inc.

Krebs cited "multiple sources close to the investigation" and said the phishing e-mails were sent at least two months before thieves started hoovering up card data from cash registers.

"Two of those sources said the malware in question was Citadel -- a password-stealing bot program that is a derivative of the ZeuS banking trojan -- but that information could not be confirmed," Krebs said.

Phishing e-mails are a common tactic thieves use to try to get people to click on a malicious link or download an infected file.

Fazio's main tool for detecting malicious software on its internal system was a free version of Malwarebytes Anti-Malware, Krebs said, which wasn't adequate. It's intended for spot use by individual users, and not an organization.

Krebs reported that a former member of Target's security team, whom he did not identify, told him that nearly all Target vendors use an external network called Ariba, which he described as an external billing system, and a Target project management and contract submissions portal called Partners Online.

Fazio Mechanical also would have had access to Target's Property Development Zone portal, the source said.

The source speculated that the digital connections could give a vendor access to Target's corporate network.

Cyberthieves made off with the payment card data of 40 million people who bought merchandise at Target's U.S. stores from Nov. 27 to Dec. 15. The company later said the personal information of 70 million customers was also taken.

The heist is one of the country's largest recorded data security breaches and remains under investigation.

The Minneapolis-based retailer declined to comment on Krebs' latest post, citing the ongoing investigation.

Dick Roberts, a spokesman for Fazio Mechanical, said he couldn't discuss the situation. "We're continuing to cooperate with the authorities on the investigation and can't comment further," he said.

The company's information technology system and security measures are in full compliance with HVAC industry practices, he said.

Last week Fazio Mechanical issued a statement saying its data connection with Target was "exclusively for electronic billing, contract submission and project management" and that no other Fazio customers were affected by the security breach. (continued...)

1  |  2  |  Next Page >

 

© 2014 Star Tribune (Minneapolis, MN) syndicated under contract with NewsEdge. All rights reserved.

Tell Us What You Think
Comment:

Name:



 CIO Issues
1. Net Gets Faster, But Easier to Attack
2. Target Hackers May Be Tough To Find
3. OpenSSL Calls for More Support
4. Heartbleed Flaw Affects Hardware
5. Is a Web Site Safe from Heartbleed?




 Most Popular Articles
1. Intel Bets on Cloudera for Big Data Analytics
2. SAP HANA Data Warehouse App Gets Faster Analytics
3. Fast Seagate 6 TB Drive Offered for Enterprise Data Centers
4. California DMV Investigates Possible Security Breach
5. Resetting All Passwords Now May Be Worst Heartbleed Fix


 Related Topics  Latest News & Special Reports

  Lessons from Verizon's Threat Report
  Officials Reveal Microsoft Data Center
  Verizon Report Exposes Cyberthreats
  Samsung Data Center Catches Fire
  Heartbleed Exploit Could Cost Millions

 Technology Marketplace
Business Intelligence
Get real-time, cloud-based information services with Neustar.
 
Cloud Computing
Next Generation Data Center Is Here! Vblock™ Systems from VCE
 
Contact Centers
HP delivers the future of the contact center with HP Qfiniti 10.
 
Data Storage
Next Generation Data Center Is Here! Vblock™ Systems from VCE
Barium Ferrite (BaFe) is the future of tape.
2.5" Enterprise-class SATA & SAS SSDs for server & storage applications
 
Enterprise Hardware
Barium Ferrite (BaFe) is the future of tape.
2.5" Enterprise-class SATA & SAS SSDs for server & storage applications
 
Hardware
Protect your network with APC Smart-UPS battery backup
 
Network Security
Protect your network with APC Smart-UPS battery backup
 

Network Security Spotlight
What Verizon's Data Breach Report Can Teach Enterprises
It’s probably not a jaw-dropper, but cyberespionage is officially on the rise. And the use of stolen or misused credentials is still the leading way the bad guys gain access to corporate information.
 
Top Cyberthreats Exposed by Verizon Report
Beyond Heartbleed, there are cyberthreats vying to take down enterprise networks, corrupt smartphones, and wreak havoc on businesses. Verizon is exposing these threats in a new report.
 
Where Do Web Sites Stand, Post-Heartbleed?
A security firm says the vast majority of Web sites have patched themselves to protect against the Heartbleed bug, but now there are questions raised on the reliability of open-source programs.
 
Navigation
Data Storage Today
Home/Top News | Data Centers | Storage Solutions | Storage Networks | Data Storage Issues | Data Security | DST Press Releases
Also visit these Enterprise Technology Sites
Top Tech News | CIO Today | Mobile Tech Today | Data Storage Today

Services:
FreeNewsFeed | Free Newsletters | XML/RSS Feed

About CIO Today Network | How To Contact Us | Article Reprints | Services for PR Pros (In partnership with NewsFactor) | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 Data Storage Today. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.