Following up on Brian Kreb’s report that attackers were able to get to Target’s payment card system after compromising the login credentials of HVAC contractor Fazio Mechanical Services,, Jaikumar Vijayan gets responses and comments from several experts on what appears to be Target’s failure to properly segment its network. You can read his article on Computerworld.
Category: U.S.
FL: Two Found Guilty Of Tax Fraud, Wire Fraud, And Identity Theft
PANAMA CITY, FLORIDA – Following a six-day trial, a jury found Versiah M. Taylor, 33, and Tracy L. Collier, 48, guilty yesterday evening on multiple counts of tax fraud, wire fraud, and identity theft. Taylor and Collier are both from Panama City. Evidence presented at trial proved that between September 9, 2011, and August 15, 2012,…
Update on Midland ISD data theft
In the wake of the Midland ISD breach where 14,000 current and former students’ information was on hard drive stolen from an administrator’s car, I asked: Was the administrator violating any established policy or was there no policy in place that says, “Hey, dummy, don’t leave PII lying around?” It turns out there really wasn’t any…
St. Louis member of “Anonymous” sentenced for DDoS on Koch Industries subsidiary
Christopher Michael Sudlik, 22, of St. Louis, Missouri, was sentenced to 36 months’ probation, 60 hours of community service, and ordered to pay $110,932.71 in restitution. The sentence was announced yesterday by James L. Santelle, United States Attorney for the Eastern District of Wisconsin. Sudlik had previously pled guilty for participating in #OpWisconsin with other members…
Former Claims Representative For The Social Security Administration Indicted For Stealing Personal Identifying Information And Money From Agency
BIRMINGHAM — A federal grand jury has indicted a former Social Security Administration claims representative for using his position to steal identifying information and benefits from Social Security beneficiaries, announced U.S. Attorney Joyce White Vance and Social Security Administration, Office of Inspector General, Special Agent in Charge Guy Fallen. A 10-count indictment filed in U.S. District…
Target Hackers Broke in Via HVAC Company – Krebs
Brian Krebs gets the scoop again: Last week, Target told reporters at The Wall Street Journal and Reuters that the initial intrusion into its systems was traced back to network credentials that were stolen from a third party vendor. Sources now tell KrebsOnSecurity that the vendor in question was a refrigeration, heating and air conditioning subcontractor that has worked at a…