Danny Yadron reports:
Verizon Communications Inc. is investigating possible security breaches at two unnamed retailers that appear similar to intrusions at other merchants late last year, a Verizon official said.
Bryan Sartin, director of the research, investigations, solutions, knowledge team at Verizon’s enterprise solutions unit, said the retailers involved in the newly discovered breaches haven’t yet disclosed them.
“We’ve been brought into other situations as the investigator,” Mr. Sartin said in an interview with The Wall Street Journal. “The findings already substantiate a very real link between these later situations and something that recently happened.”
[…]
The retailers involved in the newly discovered breaches were contacted by the U.S. Secret Service and then contacted Verizon’s investigative team last week, Mr. Sartin said.
Read more on WSJ.
So if there are two more large retail breaches, and 360M new credentials that Hold Security discovered on the black market, are the two reports connected? The Hold Security report didn’t mention payment card data, so it’s possible they’re not related, but then again, who knows?