target

(get it in RSS or Atom)

Proposed law seeks to make retailers financially responsible for data breaches

Money. Image courtesy of Shutterstock.

Fallout from the epic Target data breach continues, as state lawmakers seek to hold retailers liable for financial damages caused by breaches spawned by their businesses, rather than financial institutions who issue credit and payment cards.

Texan liquor chain Spec's leaks 550k card details in 17 month breach

Texan retail chain Spec's leaks 550k card details in 17 month breach

Spec's, the fifth largest wine retailer in the US, has leaked 550,000 customers' card details, after some of its systems were compromised for close to 17 months.

SSCC 139 - PWN2OWN, browser updates, Target alerts, PCI DSS and phishing [PODCAST]

sscc-139-thumb-250

Is a browser less secure if more people like to hack it? Is it OK to ignore alerts simply because you get too many? Do you back yourself to spot every single phish? And just how smart is the Google Play Store?

Chester and Duck dissect these issues with their usual style in this week's Chet Chat podcast...

Target missed multiple warnings that credit card data breach was underway

Target logo

Target's sophisticated security system went on full alert after detecting malware on the company’s network on 30 November last year and could have prevented the theft of 40 million credit and debit card numbers a few days later, according to a new report.

Target CIO Beth Jacob resigns in breach aftermath

Target CIO Beth Jacob resigns in breach aftermath

Following its recent epic breach, Target has announced that it's putting its technology through the wringer. Jacob will be the first high-level executive to leave since the incident.

Financial sector hit hard by data breach cleanup costs

Mop and bucket. Image courtesy of Shutterstock.

Cybercrime is all about the money. And, in the end, that money leads back to the financial sector. Banks, credit unions, insurers and everyone charged with looking after our money and covering us when something bad happens are starting to feel the pinch from the steady growth in cybercriminality.

Why we need to rethink how we view security

Why we need to rethink how we view security

When we look at some of the biggest security headlines of the past year - Target data breach, Cryptolocker ransomware, Snowden/NSA leaks - there's one big lesson we can all be taught: secure everywhere.

Target told to carry out security review just months before breach

Target was warned of payment system vulnerabilities before data breach

Former employees and others familiar with the breach investigation said at least one analyst recommended a thorough security review prior to Target's upgrading its payment system. Did the review actually happen, or was it lost in the cacophony of warnings security teams and government agencies constantly put forth?

The Spampionship, the PWN2OWN unicorn, and how Target was breached - 60 Sec Security [VIDEO]

2014-02-08-unicorn-250

Where do you find Extreme Spammers? Can you find the exploit unicorn? And how did Target get breached?

Find out in 60 Sec Security for 08 Feb 2014...

Did the crooks who broke into Target tailgate the cleaners?

target-250

Intrepid chronicler of the Target breach, Brian Krebs, has uncovered yet another cog in the criminal gearbox behind Target's data disaster.

Guess what? 2FA and network segregation would have made things a lot harder for the crooks...

SSCC 133 - Prize unicorns, Android malware, 2FA, Attack reports and Vote For Us! [PODCAST]

sscc-133-thumb-250

Chet and Duck review the week's news in their informed and entertainingly serious style, discussing the prizes on offer at this year's PWN2OWN competition, talking about a new twist in Android malware, and reviewing the latest attack reports from Yahoo and Target...

Target says hackers got in by using a vendor's credentials

Target says hackers got in through a vendor

The company has reportedly shut down remote access to at least two internal systems: one for HR and one for suppliers. And yes, the DOJ is investigating this, one of the biggest breaches of all time.

FBI warns of crimewave hitting cash registers

FBI warns of crimewave hitting cash registers

The US Federal Bureau of Investigations (FBI) has warned retailers to harden their defences against cyber-heists - particularly those that latch onto credit card details from shoppers

Target issues apology letter - but includes some awful security advice

target-250

A Naked Security reader just received Target's advisory letter saying she'd been part of the recent breach. But she didn't find it as clear as perhaps it could have been.

Paul Ducklin takes a look...is there anything Target could have done differently?

Payment data hacked at US luxury retailer Neiman Marcus

Payment data hacked at US luxury retailer Neiman Marcus

Hot on the heels of the massive Target data breach, retail group Neiman Marcus has confirmed a mid-December security breach and that an undisclosed number of payment cards have been compromised.

Target admits "there was malware on our point-of-sale registers"

target-ryg-250

The Target data breach story has turned into a bit of a bus: it's big, has lots of momentum, and three just came along at once.

First: 40M payment card details stolen. Second: 70M names, addresses and the like stolen. Third: looks like there was a specialised botnet involved.

Target's data breach MUCH bigger than first thought - now more than 100,000,000 records

target-shot-250

US megaretailer Target is having a tough time of it.

Having said that, so are its customers - and even, as it now turns out, many of its non-customers, too.

Target has now joined companies like Adobe and Sony in the "hundred million plus" data breach club...

SSCC 128 - Learning from 2013 for a safer, more secure 2014 [PODCAST]

sscc-thumb-250

Our weekly security podcast looks back at the big blunders of 2013 to find out what went wrong.

Let Chet and Duck help you plan for a safer and more secure 2014!

SSCC 127 - Target, Microsoft, Apple, Gmail...and some amazing acoustics [PODCAST]

sscc-127-thumb-250

Chet and Duck help you to learn from recent security news, both good and bad.

In this episode: the massive Target breach; Microsoft's and Apple's attitude to updates; and how to respond to Google's recent changes to image rendering for Gmail users.

CarderPlanet bust, Target credit card breach, online safety for kids - 60 Sec Security [VIDEO]

2013-12-21-eavesdroppers-250

What prison sentence for the man who pioneered online carding? How many credit cards did Target lose? Does your encryption software "speak" to passers-by? How to keep your kids safe online over the holidays?

Find out in 60 seconds!