Target vendor says hackers breached data link used for billing

WEDNESDAY Fri Feb 7, 2014 5:28am IST

Chief Financial Officer and executive vice president of Target John Mulligan (2nd L) talks to his counsel Stuart Ingis (L) as Chief Information Officer at Neiman Marcus Michael Kingston (R) sits before testifying at the Senate Judiciary Committee hearing about Privacy in the Digital Age on Capitol Hill in Washington, February 4, 2014. REUTERS/Larry Downing

Chief Financial Officer and executive vice president of Target John Mulligan (2nd L) talks to his counsel Stuart Ingis (L) as Chief Information Officer at Neiman Marcus Michael Kingston (R) sits before testifying at the Senate Judiciary Committee hearing about Privacy in the Digital Age on Capitol Hill in Washington, February 4, 2014.

Credit: Reuters/Larry Downing

Related Topics

Stocks

   

WEDNESDAY (Reuters) - The Target Corp (TGT.N) hackers managed to break into its payments network by first breaching a "data connection" between the U.S. retailer and its heating and ventilation systems contractor, a representative for the contractor said on Thursday.

The data connection was used by the vendor, Fazio Mechanical Services, to bill Target and exchange contract and project management information with the retailer, according to Dick Roberts, a public relations representative for Fazio.

Target, the third-largest U.S. retailer, has said the hackers stole about 40 million credit and debit card records, as well as personal information, such as addresses and phone numbers, belonging to about 70 million customers.

Target spokeswoman Molly Snyder declined on Thursday to comment on the company's vendor relationships or to provide an update. "This is an active and ongoing investigation. I don't have additional details to share at this time," she said.

Last week, Target said the theft of a vendor's credentials had helped cyber criminals pull off the massive data breach, which occurred during the holiday shopping season in late 2013. Target did not identify the vendor.

The U.S. Secret Service is investigating the Target attack, and said on Wednesday that its agents had visited the offices of Fazio Mechanical Services, based in Sharpsburg, Pennsylvania.

Fazio does not believe the hackers breached any data or data connections involving any of its other customers, Roberts said.

Ross E. Fazio, president and owner of Fazio Mechanical Services, said in a statement that his company was "fully cooperating" with Target and the Secret Service "to identify the possible cause of the breach."

Fazio provides Target with heating, ventilation and air conditioning services, which are maintained physically. Fazio did not monitor these systems by remote control, Roberts said.

(Reporting by Mark Hosenball in Washington; Additional reporting by Phil Wahba in New York; Editing by Tiffany Wu, Toni Reinhold)

FILED UNDER:
Comments (0)
This discussion is now closed. We welcome comments on our articles for a limited period after their publication.

  • Most Popular
  • Most Shared

ANTI-TRUST PROBE

Reuters Showcase

New iPhone

New iPhone

New Apple iPhone to have "mobile wallet" function - Bloomberg  Full Article 

Wearable Gadgets

Wearable Gadgets

Swatch prefers go-it-alone route for smartwatch plans.  Full Article 

Google Drones

Google Drones

Google tests drones for deliveries.  Video 

Hot Commodity

Hot Commodity

Data scientists are increasingly becoming important to the world's tech companies.  Video 

Reuters India Mobile

Reuters India Mobile

Get the latest news on the go. Visit Reuters India on your mobile device.  Full Coverage