Homeland Security warns retailers about malware that hit Target


The U.S. Department of Homeland Security has gotten involved in investigating the massive data breach at Target.

CNN reports information about the malware used to hijack customer information was detailed in a government report and distributed to the nation's major retailers. The government alerted retailers the aggressive software that led to the compromise of data at Target has likely infected other companies.

The Star Tribune reports that federal authorities issued the technical bulletin that contains descriptions of the malware that hackers used to attack Target. The report says the Secret Service and the cybersecurity arm of the Department of Homeland Security began working together on the issue as early as Dec. 18, the first day that news surfaced about the data breach.

The report said multiple retailers are still being attacked and calls this malware variant "the most dangerous ever used." The malicious file infects point-of-sale devices – cash registers – and extracts customer data processed on them. Then the data is transmitted, according to Tiffany Jones, senior vice president at iSIGHT Partners, the private firm working on the investigation. In its report, iSIGHT Partners said the hackers "displayed innovation and a high degree of skill in orchestrating the various components of the activity." Here's a summary of that report.

Last week Target updated the number of customers who had their personal information compromised to 70 million. The number was later updated to as many as 110 million. Payment data was compromised for customers who shopped between Nov. 27 and Dec. 1.

The malware variant has been dubbed Trojan.POSRAM and was derived from another type of malware known as BlackPOS, the report said. Authorities have dubbed the point-of-sale operation KAPTOXA.

Brian Krebs, the computer security blogger who first revealed the Target breach, told the Star Tribune on Thursday he thinks a hacker he profiled in December is at the center of the Target heist. The man is a Ukrainian nicknamed Rescator.

FOX 9 reported that Krebs suspects the cyber crooks broke into Target through a Web server, then planted the malicious software server to snag stolen card data. The information was collected directly from magnetic strips before it could be encrypted, but, as the station notes, "...the wildest part is that it was sent to a server inside Target just six days later. That internal server uploaded 11 gigabytes of data over two weeks."

No antivirus product available on the market is able to detect the malware used in the attack, according to Krebs.

Target officials will discuss the problems at a U.S. House hearing in the first week of February before a subcommittee of the House Committee on Energy and Commerce.

Next Up

moose minnesota usfws - flickr

MN homeowner mistakes large tent for dead moose

They spotted two people on a security camera dragging the "moose" across a driveway.

Flickr - minneapolis police officer close-up belt camera - Tony Webster

What happens if Mpls. public safety question passes? City memo provides answers

The memo was sent to the mayor and council members Tuesday morning.


COVID-19 hits Minnesota Wild coaching staff

The Wild will be shorthanded for Tuesday night's game in Vancouver.

Anthony Edwards

Ant takes alpha role after bad loss: 'We need to lock the f*** in'

The Timberwolves' rising star was not happy after Monday's loss to the Pelicans.

parker eisinger

Lakeville football player diagnosed with cancer week before playoffs

The tenth-grader was diagnosed with a form of cancer most commonly found in people aged 65 and older.

University of Minnesota peeping tom suspect

Someone keeps trying to film showering women at U of M

The university has received three reports in the past two weeks.

john Fluevog shoes 1

John Fluevog Shoes closes its Uptown Minneapolis store

The brand could return to the Twin Cities one day.

sidecar drink

Sidecar — Town Hall's new cocktail lounge — is officially open in Minneapolis

It's the fifth Town Hall location, but the first to focus on cocktails.

Screen Shot 2019-07-18 at 9.10.30 AM

Here's where DFLers stand on Minneapolis' public safety ballot question

The question would create a Department of Public Safety and remove some requirements.

Arthur Kollie

Man pleads guilty to brutal murder of 14-year-old girl in Fargo

The 14-year-old girl was the victim of a random attack outside a Fargo strip mall.

Minneapolis Mayoral Candidates 2021 - jacob frey sheila nezhad kate knuth

Here's who has endorsed the frontrunners for Minneapolis mayor

Politicians and community groups are voicing their opinions.