Target Hack Blamed on Stolen Credentials: Who's at Fault?
Page 1 of 1
According to a Wall Street Journal report this week, the Target attackers were able to gain access to the retailer's system by way of stolen credentials from a third-party vendor.
The investigation into the Target breach has widened and now involves the U.S. Department of Justice. In a submission to the U.S. Senate Committee on the Judiciary on Jan. 29, Attorney General Eric Holder specifically discussed the Target breach.
"The Department of Justice takes seriously reports of any data breach, particularly those involving personally identifiable or financial information, and looks into allegations that are brought to its attention," Holder said. "While we generally do not discuss specific matters under investigation, I can confirm the Department is investigating the breach involving the U.S. retailer, Target. And we are committed to working to find not only the perpetrators of these sorts of data breaches—but also any individuals and groups who exploit that data via credit card fraud."