News

Target missed early alert of data breach

Target missed early alert of data breach

TARGETED: Some 40 million credit and debit card records were stolen from the retailer, along with 70 million other records with customer information such as addresses and telephone numbers. Photo: Associated Press

WASHINGTON (Reuters) – A Target Corp team of security experts, armed with a malware detection tool made by FireEye Inc, alerted company officials about a possible data breach on Nov. 30, but they failed to respond to the warning signs, according to a media report on Thursday.

The security specialists in Bangalore, India, monitoring computer logs found FireEye’s alerts from Nov. 30 and notified Target officials in Minneapolis, “Bloomberg Businessweek” reported. They also found more alerts from Dec. 2, when more malware surfaced.

Such warnings, if heeded, could have cut short the massive data breach that affected millions of customers who shopped at the nation’s No. 3 retailer between Nov. 27 and Dec. 18 – the height of the U.S. holiday shopping season.

Some 40 million credit and debit card records were stolen from the retailer, along with 70 million other records with customer information such as addresses and telephone numbers.

Congress is investigating the breach along with lapses that surfaced at other retailers, and credit card companies are pushing for better security.

Shares of Target took a hit after news of the security lapse surfaces in mid-December but recovered after the company offered assurances last month. Its shares were largely unchanged in pre-market trading on the New York Stock Exchange on Thursday.

Shares of FireEye were up 2 percent on Nasdaq.

Bloomberg, citing a source who has consulted on the Target’s investigation, said hackers deployed a custom-made code on November 30 that triggered a FireEye alert for the malware, including details on the servers where stolen data was to be delivered.

The security system’s automatic function to delete such malware was turned off by Target’s security team, the report said, citing two people who audited FireEye’s role after the breach.

Target Chief Executive Gregg Steinhafel, in a statement to Bloomberg, said the retailer was still reviewing its “people, processes and technology” in the wake of the breach.

“As the investigation is not complete, we don’t believe it’s constructive to engage in speculation without the benefit of the final analysis,” Steinhafel wrote, according to the report.

He said the company had “already taken significant steps.” Target earlier this month said it was overhauling its information security practices.

Representatives for Target and FireEye could not immediately be reached to comment on the report.

(Reporting by Susan Heavey in Washington and Jim Finkle in Boston; Editing by Stephen Powell)

Recent Headlines

in National, World

Israel warns of long Gaza war as Palestinian fighters cross border

Israeli soldiers patrol outside the northern Gaza Strip on July 28, 2014.

Israeli Prime Minister Benjamin Netanyahu dashes any hopes of a swift end to the three-week conflict as Palestinian fighters launched an audacious cross-border raid.

in Sports

Only arguing remains in Sterling trail

FILE - In this Nov. 12, 2010, file photo, Shelly Sterling sits with her husband, Donald Sterling, right, during the Los Angeles Clippers' NBA basketball game against the Detroit Pistons in Los Angeles. With a $2 billion sale of the Clippers hanging in the balance, a judge is set to determine Monday, June 30, 2014, if the terms of a family trust alone are enough to confirm Donald Sterling was properly removed as trustee and allow his estranged wife to sell the team without his consent.

Only final arguments and a ruling remain in the trial to determine whether Donald Sterling's estranged wife can sell the Los Angeles Clippers for $2 billion.

in Sports

Paul McGinley pulls out of PGA Championship with injury

Paul McGinley of Ireland laughs during a news conference after being named the European Ryder Cup captain at the St. REgis in Saadiyat Islands in Abu Dhabi on January 15, 2013.

European Ryder Cup captain Paul McGinley has pulled out of the PGA Championship with a shoulder injury.

in National

Dollar Tree to buy Family Dollar for $8.5 billion

FILE - In this Tuesday, Nov. 29, 2005, file photo, customers walk past a Family Dollar store at Hickory Grove Market in Charlotte, N.C. Dollar Tree is buying rival discount store Family Dollar in a cash-and-stock deal valued at about $8.5 billion, the companies announced Monday, July 28, 2014.

Discount store chain Dollar Tree Inc offered to buy rival Family Dollar Stores Inc for about $8.5 billion.

in Sports

South African Tim Clark wins Canadian Open

Tim Clark tees off the 12th hole during the third round of the RBC Canadian Open at Royal Montreal GC - Blue Course on July 26, 2014.

South African Tim Clark sank a six-foot par putt to beat American Jim Furyk by one stroke at the Canadian Open.