Report: Target hackers used stolen Pa. refrigeration vendor credentials

Author:
Updated:
Original:

A bombshell revelation from a cyber-security website about how hackers got at Target's customers was released on Wednesday even as executives from the embattled retailer explained their practices to a congressional committee in a hearing on Capitol Hill.

The Pioneer Press quoted a post on KrebsOnSecurity website by Brian Krebs, who broke the story of the Target data breach in December. He said the hackers who snatched personal and financial information belonging to millions of Target shoppers gained access to the company's network using credentials stolen from a Pennsylvania refrigeration company that has worked at a number of Target locations.

MPR News also cited the Krebs report, noting that the initial breach had been traced to credentials stolen from a third party vendor, the heating and air conditioning company.

Fazio Mechanical Services is the refrigeration company named in Krebs' post. It lists two Target jobs on a company website -- one in Ohio, and the other in Maryland. President Ross Fazio reportedly told Krebs that the "U.S. Secret Service visited his company's offices in connection with the Target investigation."

Target announced the breach on Dec. 19, saying information from up to 40 million customers was stolen between Nov. 27 and Dec. 15. Target later acknowledged that additional information from up to 70 million customers was stolen in a separate breach.

Target CFO John Mulligan appeared before both Senate and House committees this week, testifying that Target is investing $100 million to improve security, including the adoption of updated chip-and-PIN technology.

Next Up

Willmar Police Department

'Errant bullet' goes through garage wall, kills Willmar man

The man was working in his garage when he was shot, witnesses said.

Screen Shot 2021-01-16 at 10.59.00 PM

Wild tie Kings with 2 seconds left, win in overtime

Another incredible finish for the Wild.

Screen Shot 2021-01-16 at 6.53.17 PM

Mike Lindell's MyPillow offering discounts using the code 'Qanon'

The Shakopee-based company is under the microscope because of the recent actions of its owner.

Surly Brewing

Facing aluminum can shortage, Surly unveils solution: 'Cantyhose'

The brewery came up with a creative way to repurpose unused cans.

Liam Robbins

Gophers stay perfect at home by crushing 7th-ranked Michigan

Liam Robbins and Marcus Carr were too much for the previously undefeated Wolverines.

police lights

Four teens arrested over robberies in Minneapolis

They teens were found in a vehicle that was taken during an earlier carjacking.

Boundary Waters/BWCA

All BWCA visitors will now have to watch three 'Leave No Trace' videos

Visitors left an "unacceptably high amount" of damage last year.

ambulance

Ten fatal overdoses in past 6 weeks reported in region of northern MN

Law enforcement agencies have issued a plea to the general public.

u.s. district court minnesota - federal court minneapolis

Bracing for security threats, federal courthouses closing in Minnesota

Security is also being ramped up at the state capitol.

N95 mask

3M sues Florida company that sold 10K counterfeit N95 masks to HCMC

The Maplewood company has obtained a temporary injunction against the firm.

Related