Pittsburgh-area heating and refrigeration contractor Fazio Mechanical Services confirms it was the victim of a "sophisticated cyber attack operation" investigated by the Secret Service and possibly linked to the Target data breach.
"Like Target, we are a victim of a sophisticated cyber attack operation," owner Ross Fazio said in a statement. "We are fully cooperating with the Secret Service and Target to identify the possible cause of the breach and to help create proactive initiatives that will further enhance the security of client/vendor connections making them less vulnerable to future breaches."
Target previously confirmed a vendor's system was the source of the possible breach 40 million credit and debit card accounts. While the Secret Service hasn't providing any details of its investigation, Fazio Mechanical pointed to the following facts in its statement:
- Fazio Mechanical does not perform remote monitoring of or control of heating, cooling and refrigeration systems for Target.
- Fazio's data connection with Target was exclusively for electronic billing, contract submission and project management, and Target is the only customer for whom they manage these processes on a remote basis. No other customers have been affected by the breach.
- The Fazio IT system and security measures are in full compliance with industry practices.
Some banks and credit union have proactively replaced the cards of customers whose accounts may have been affected by shopping at Target during the Nov. 27 to Dec. 18 breach window.
Target has said customers won't be responsible for any losses.