TARGET BREACH: Security warning ignored before heist - KMSP-TV

TARGET BREACH: Security warning ignored before heist

Posted: Updated:

Target may have missed a chance to stop the massive data breach that hit customers during the busy holiday shopping season according to a report in Bloomberg Businessweek.

By all accounts, it looks like Target took its security seriously. Mark Lanterman, CEO and chief technology officer of Computer Forensic Services, told Fox 9 News the company spent more money on security than any other retailer he knows, which is why he says it's shocking the hackers were able to be in the system for a week without being noticed.

"This is world-class," he said. "This is used by every 3-letter government agency there is," Lanterman said.

According to the Bloomberg report, Target installed a malware detection tool to alert the company of any suspicious activity to its computer network six months before the breach. Lanterman said the $1.6 million system Target put in place to protect customers appeared to be working perfectly, and even warned the company when a breach took place.

"This is exactly like a tornado siren sounding and we just went about our business as usual," Lanterman explained.

A team of security specialists were monitoring the network and were alerted on Nov. 20th, but that information didn't come to light until Bloomberg Businessweek completed its 6-week investigation. 

Mike Riley was one of 4 reporters working the story, and through interviewing current and former Target employees, he learned a system called Fire Eye told Target about the malware invasion and even detailed what data was being stolen.

"Just within the last couple hours, they released a statement saying, in fact, the activity of the hackers was logged in the system and that their security team looked at it, evaluated it, and -- based on that evaluation -- decided not to act on it," Riley said.

Lanterman also interviewed those same sources at Target, and he said the Fire Eye system does have an automatic delete option when malware is detected; however, he said Target disabled the function so they could conduct internal investigations before deleting files themselves.

"These alerts should have been top priority," Riley said. "They were given and acknowledged and, for whatever reason, the Target security team ignored them."

The lesson to learn from the missed alert, Lanterman says, is that even the best security system in the world won't do any good if it's not monitored and its warnings are not heeded.

"In hindsight, they should have flipped the switch or they should have done their jobs," Lanterman said.

As a result of the breach, 40 million credit and debit card numbers and the personal information of 70-million customers was compromised. The breach caused Chief Information Officer Beth Jacob to resign in the aftermath.

  • Most Popular StoriesMost Popular StoriesMore>>

  • 35 breathtaking views of Supercell clouds in Minnesota, Wisconsin

    35 breathtaking views of Supercell clouds in Minnesota, Wisconsin

    Sunday, July 27 2014 1:26 PM EDT2014-07-27 17:26:52 GMT
    Saturday night, North of the metro, a "Trail of Hail" made its way from Minnesota to Wisconsin. Large hail, some the size of tennis balls were reported in parts ofPolk County, WI. There were only a few storms but those storms were
    Saturday night, North of the metro, a "Trail of Hail" made its way from Minnesota to Wisconsin. Large hail, some the size of tennis balls were reported in parts of Polk County, WI. There were only a few storms but those storms were
  • Plano dad’s invention fills and ties water balloons in seconds

    Plano dad’s invention fills and ties water balloons in seconds

    Thursday, July 24 2014 4:16 PM EDT2014-07-24 20:16:28 GMT
    One creative dad has come up with a quick and easy solution for a North Texas summer staple – the water balloon fight.
    One creative dad has come up with a quick and easy solution for a North Texas summer staple – the water balloon fight.
  • Newborn dead, 14-year-old girl hospitalized in southern Minnesota

    Newborn dead, 14-year-old girl hospitalized in southern Minnesota

    Sunday, July 27 2014 5:15 PM EDT2014-07-27 21:15:10 GMT
    Police in southern Minnesota are investigating the death of a newborn baby and the hospitalization of a teenage girl in the small town of Butterfield, Minn. -- but they aren't releasing many details, and many rumors are swirling in place of answers.
    Police in southern Minnesota are investigating the death of a newborn baby and the hospitalization of a teenage girl in the small town of Butterfield, Minn. -- but they aren't releasing many details, and many rumors are swirling in place of answers.
Powered by WorldNow

KMSP-TV
11358 Viking Drive
Eden Prairie, MN 55344

Phone: (952) 944-9999
Fax: (952) 942-0455

Didn't find what you were looking for?
All content © Copyright 2000 - 2014 Fox Television Stations, Inc. and Worldnow. All Rights Reserved.
Privacy Policy | Terms of Service | Ad Choices