Target Hackers Tapped Vendor Credentials

  /     /     /  
Publicated : 22/11/2024   Category : security


Target Hackers Tapped Vendor Credentials


Investigators suspect that BMC software, Microsoft configuration management tools, and SQL injection were used as hacking tools and techniques in Targets massive data breach



Target said Wednesday that the hackers who attacked the company employed access credentials that were hardcoded into a product used by the retailer.
We can confirm that the ongoing forensic investigation has indicated that the intruder stole a vendors credentials which were used to access our system, Target spokeswoman Molly Snyder said Thursday via email.
Target declined to identify the vendor whose credentials attackers had obtained, though confirmed that the attack vector has been blocked. As we have previously shared, we confirmed the breach on December 15 and were able to eliminate the malware and close the access, she said. Since that time we have taken extra precautions such as limiting or updating access to some of our platforms while the investigation continues.
Read the full article
here
.
Have a comment on this story? Please click Discuss below. If youd like to contact
Dark Readings
editors directly,
send us a message
.

Last News

▸ Beware EMV may not fully protect against skilled thieves. ◂
Discovered: 23/12/2024
Category: security

▸ Hack Your Hotel Room ◂
Discovered: 23/12/2024
Category: security

▸ Website hacks happened during World Cup final. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Target Hackers Tapped Vendor Credentials