Following up on Brian Kreb’s report that attackers were able to get to Target’s payment card system after compromising the login credentials of HVAC contractor Fazio Mechanical Services,, Jaikumar Vijayan gets responses and comments from several experts on what appears to be Target’s failure to properly segment its network. You can read his article on Computerworld.
Category: Commentaries and Analyses
Pointer: Company Chosen To Help Target, Neiman Marcus Customers Has Own Lengthy History Of Data Breaches
idRADAR has a lengthy piece on Experian’s data security breaches. The story, by Jeanne Price, includes references DataLossDB.org’s compilation of reports as well as this site’s coverage and the complaint I filed in my individual capacity against Experian with the FTC over their numerous breaches. You can read her report here.
Industries dodge breach blame
Associated Press reports: Banks and big retailers are locked in a debate over the breach of consumer data that gripped Target Corp. during the holiday season. At issue: Which industry bears more responsibility for protecting consumers’ personal information? The retailers’ argument: Banks must upgrade the security technology for the credit and debit cards they issue….
MI: Hacker steals teacher’s direct deposit paycheck: University says too bad so sad
Darlene Storm reports: No matter how much you love your job, very few people work for free. About 80% of Americans receive their paychecks via direct deposit, but if a hacker manages to reroute your paycheck to his or her account, is that just tough luck and you don’t get paid? That’s basically what a…
TX: 14,000 Midland ISD students risk identity theft because of sloppy security
From the oh-FFS-dept.: AP reports: The identity information of 14,000 past and present Midland Independent School District students has been compromised by a computer theft. Midland school Superintendent Ryder Warren says a laptop computer and external hard drive containing the information was stolen from the back of a district administrator’s car on Jan. 23. He…
Commission Statement Marking the FTC’s 50th Data Security Settlement – January 31, 2014
Today marks a milestone for the Federal Trade Commission – the announcement of the Commission’s 50th data security settlement. What started in 2002 with a single case applying established FTC Act precedent to the area of data security has grown into a vital enforcement program that has helped to increase protections for consumers and has encouraged companies to make…