of 110 million shoppers!
HOW DID THEY DO THAT?
HACKERS often research which outside contractors/vendors have remote access to the networks
of large corporations because they make easier targets.
This attack method is known as "island hopping" and is more common than you’d think.
Very sophisticated cyber attack operation
tricked an outside vendor employee into
SUBJECT: YOUR WEDDING PHOTOS!
FROM: ABC PHOTOGRAPHY!
TO: MR. XY%(HLio!
DATE: 13 February 2014!
We have some important information about your account. Please click the
link below to contact one of our representatives!
We have some important information about your account. Please
click the link below to contact one of our representatives.
clicking on a malicious email!
The vendor employee with access to Target's network fell for a
"spear phishing” attack.
HACKERS sent malware-laced emails that appeared to come from
trusted sources, which took over vendor employee’s computer.
Once HACKERS gained access to the vendor employee’s computer,
they penetrated Target's system and stole the retailer's payment
Researchers at a cloud security company found 55,000 so-called HVAC vendors that are
connected to the Internet.
Many vendors ignore basic computer security measures.
Reportedly, Target may not have realized the phishing attack initially, because the company
was using a free anti-malware program that does not offer real-time protection against
DON’T BE A TARGET!
YOUR SYSTEMS AND
Engage your IT personnel more frequently.
Tap into the experience of your security personnel.
Ensure you have a strong, solid anti-virus program program to guard your systems.
Implement regular employee security training and education programs and sessions.
IT’S A START!