More than 110 million Target customers had their credit-card information stolen because at least one employee of a heating and air-conditioning contractor succumbed to an email phishing scheme, cybersecurity blogger Brian Krebs reported Wednesday.
The revelation, if true, is the strongest indication yet of what went wrong since Krebs first exposed the massive heist of consumer financial data at the national retail giant late last year, a startling cyberattack that has prompted intense congressional inquiry. Neiman Marcus and other chains have also recently been victimized, though it is not believed that the perpetrators are the same.
Last week, Krebs reported that hackers infiltrated Target’s network by swiping the login credentials of Fazio Mechanical Services, a Pennsylvania-based contractor.
Now, anonymous sources tell Krebs that credentials “were stolen in an email malware attack at Fazio that began at least two months before thieves started stealing card data from thousands of Target cash registers.” It appears that the culprits used a password-stealing bot known as Citadel to get the job done.
Fazio, in response to its sudden notoriety last week, sent out a statement explaining that it had been “the victim of a sophisticated cyberattack operation.” But Krebs notes that the company’s defense against malicious attacks was a free version of a somewhat impotent anti-malware program, which “is made explicitly for individual users and its license prohibits corporate use.”
Members of Congress are calling for a bill to create a national reporting standard for data breaches similar to the one that hit Target. Retailers and financial institutions would be required to notify government and consumers of breaches when they occur.
The new revelations arrive on a day when the White House rolled out a set of voluntary guidelines intended to help businesses defend themselves against hackers.
What We're Following See More »
"A stopgap spending bill stalled in the Senate Friday night, leading to a government shutdown for the first time since 2013. The continuing resolution funding agencies expired at midnight, and lawmakers were unable to spell out any path forward to keep government open. The Senate on Friday night failed to reach cloture on a four-week spending bill the House had already approved."
"The FBI is investigating whether a top Russian banker with ties to the Kremlin illegally funneled money to the National Rifle Association to help Donald Trump win the presidency." Investigators have focused on Alexander Torshin, the deputy governor of Russia’s central bank "who is known for his close relationships with both Russian President Vladimir Putin and the NRA." The solicitation or use of foreign funds is illegal in U.S. elections under the Federal Election Campaign Act (FECA) by either lobbying groups or political campaigns. The NRA reported spending a record $55 million on the 2016 elections.
"Hundreds of new and supplemental FARA filings by U.S. lobbyists and public relations firms" have been submitted "since Special Counsel Mueller charged two Trump aides with failing to disclose their lobbying work on behalf of foreign countries. The number of first-time filings ... rose 50 percent to 102 between 2016 and 2017, an NBC News analysis found. The number of supplemental filings, which include details about campaign donations, meetings and phone calls more than doubled from 618 to 1,244 last year as lobbyists scrambled to avoid the same fate as some of Trump's associates and their business partners."