{"id":2877,"date":"2013-12-31T12:46:51","date_gmt":"2013-12-31T07:16:51","guid":{"rendered":"https:\/\/www.qadit.com\/blog\/?p=2877"},"modified":"2014-01-03T12:00:35","modified_gmt":"2014-01-03T06:30:35","slug":"the-target-breach-one-of-the-biggest-in-us-history","status":"publish","type":"post","link":"https:\/\/qadit.com\/blog\/the-target-breach-one-of-the-biggest-in-us-history\/","title":{"rendered":"The Target Breach – One of the biggest in US history"},"content":{"rendered":"

Was Target’s breach the result of an insider job? Or was it a network hack? Or was it ….
\n
\nTarget is America’s third largest retailer with over 1500 stores in the US. Credit and debit cards used in Target stores between November 27 and December 15 may have been compromised. This is the official timeline; customers on various sites are reporting that their cards have had fradulent transactions even though they used their cards at Target outside of the breach window(both before November 27 and after December 15). Though many websites are claiming that the number of cards that have been compromised are around 40 million, we are unable to find the source of this reported number. Brian Krebs (of the ever popular krebsonsecurity.com website) reports that he has spoken to some sources from major card issuers and he has been given to understand that more than a million cards may have been compromised.
\n 
\nWhat we know.<\/strong>
\n 
\nTarget is PCI DSS compliant.
\n 
\nTrack data has been stolen. Track data contains card numbers, names, expiry dates and card security code. All this data can be stolen just by swiping the card. All cards in the US are based on magnetic strips – an invention by IBM in 1960. Many parts of the world are moving to the more difficult to steal EMV cards (data from EMV or chip based cards can an also be stolen but it is a much more complicated and time consuming process and criminals have not yet descended upon this activity)
\n 
\nIt was initially reported that PINs had not been stolen. Subsequently, Target announced that PINs were indeed stolen.
\n 
\nIf a customer card has been fradulently charged, the customer does not have to foot the bill.
\n 
\nThe online store and the stores in Canada have not been affected.
\n 
\nWhat is not clear.<\/strong>
\n 
\nHow did the breach happen? Was it a network attack? Were POS terminals hacked? Was it an insider job? The more popular ones are:
\n 
\nPOS terminals were infected with malware. How did the hackers gain access to the server that originally pushed updates to the POS terminals? Was this server inside Target’s network? Was the server and the activity of updating outsourced to a third party vendor? Not clear.
\n 
\nThe router\/switch\/other part of the network was hacked.
\n 
\nIt was an inside job. This is a very plausible scenario considering the fact that restrictions on insiders are generally lax.
\n 
\nDid the POS terminal have basic security measures as specified by the PCI? This might not be a relevant factor as far as this breach is concerned.
\n 
\nWhat can be done to prevent such instances in the future? <\/strong>
\n 
\nSince we don’t know what exactly happened, we can’t protect against it, can we? At this stage, what we can do is draw up mechanisms to protect against the possible causes of the attack.
\n 
\nThe most difficult things to protect against are insider jobs – how does an organization achieve a balance between placing curbs on people and giving them enough freedom to perform their jobs efficiently. This is a thin line to tow and one that requires a lot of understanding of processes, where data is, how it flows and who has access data.
\n 
\nStay tuned for updates<\/p>\n","protected":false},"excerpt":{"rendered":"

Was Target’s breach the result of an insider job? Or was it a network hack? Or was it ….<\/p>\n","protected":false},"author":6,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[7],"tags":[],"class_list":["post-2877","post","type-post","status-publish","format-standard","hentry","category-frauds"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9AH7Q-Kp","_links":{"self":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/2877","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/comments?post=2877"}],"version-history":[{"count":0,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/2877\/revisions"}],"wp:attachment":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/media?parent=2877"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/categories?post=2877"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/tags?post=2877"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}