Target Security Breach

Even though Target is ranked currently 36 in the fortune 500 companies and have over 1750 stores, they are still very susceptible to being a victim of a cyber attack. In 2013, Target fell victim to a security breach on their system. Roughly around Thanksgiving of 2013, someone had installed malware in Target’s security and payment system enabling the hackers to steal credit card and personal information. “Six months earlier the company began installing a $1.6 million malware detection tool made by the computer security firm FireEye, whose customers also include the CIA and the Pentagon.” (BloombergBusiness) In place was a very effective security system. However, when the attacked happen on November 30, FireEye spotted the hackers and Bangalore (a third party cyber security company hired by Target) that alerted the IT team at corporate office in Minneapolis. There was no response from Target’s Corporate IT team and therefore led to 40 million credit card numbers and 70 million addresses, phone numbers and other personal

Even though Target is ranked currently 36 in the fortune 500 companies and have over 1750 stores, they are still very susceptible to being a victim of a cyber attack. In 2013 Target fell victim to a security breach on their system. Roughly around Thanksgiving of 2013 someone had installed malware in Target’s security and payment system enabling the hackers to steal credit card and personal information. “Six months earlier the company began installing a $1.6 million malware detection tool made by the computer security firm FireEye, whose customers also include the CIA and the Pentagon.” (BloombergBusiness) In place was a very effective security system, but when the attacked happen on November 30, FireEye spotted the hackers and Bangalore, a third party cyber security company hired by Target alerted the IT team at corporate office in Minneapolis. There was no response from Target’s Corporate IT team and therefore led to the 40 million credit card numbers and 70 million addresses, phone numbers

During the last Christmas season, Target announced that their data security was breached. According to David Lazarus in Los Angeles Times, Target stated that roughly 110 million customers’ information was illegally taken from their database. The information included their credit/debit card info, phone numbers, and email addresses. Target is one of the most popular grocery stores in the U.S.; they have a substantial amount of consumers. Because of this incident, consumers' trusts for the store have been decreasing. Worrying about losing its customers, the company offered a free year of credit monitoring and identity-theft protection, so the customers will feel more secure. Not only Target, some other large retailers also faced the same issues. They want their customers to trust that the companies can protect private data. However, should we not worry? Data breaches have been going on for about a decade, but we have not seriously thought about the issue. In order to protect people’s privacy, the federal government should make new laws concerning companies’ handling of customer information.

The Target Corporation has undergone many changes due to the 2013 security breach where hackers stole personal information from credit and debit cards of at least 70 million customers. Target sales and reputation has dropped from this instance, thus eliciting changes in their security systems, changes in management, and a few policy changes in handling customer information. With the public eye on the corporation’s handling of the situation, Target has been communicating these changes through various means. The changes they needed to communicate were informing customers of the security breach, addressing the bad press coverage to shareholders, downsizing of employees, and

Target has suggested that its vendors create special products or prevent price comparisons to help decrease consumer show-rooming (Kinicki & Williams, 2013). Pressure of this sort could create opportunities for vendors to participate in unethical practices and could create a negative image for Target (McKay, Nitsch, & Peters, 2015). Although laws, such as the Sarbanes-Oxley Act, are basic frameworks that business operations must comply with, there is no guideline that businesses have to follow when making business decisions. Furthermore, ethical behavior can be perceived by customers, investors, and society as corporate responsible while creating additional value for products or services (Kinicki et al., 2013). Target should ensure that it ethically follows all constraints of the law while considering the impacts its decisions will have on its stakeholders, and while fostering an image, responsibly by corporate.

Target faces a major problem that many other organizations are facing, keeping consumer information private. Protecting consumer information is becoming more complicated due to the increase of technology available to those looking to steal their information. In order to create a solution to this problem an organizational development intervention would need to occur at a team level. The team level is the most appropriate level due to the fact that for a major technological change to occur across the whole organization it would involve analysis of the team not one individual (South University Online, 2015, para. 2). A technology breach would

On December 18, 2013, one of the security bloggers, Brian Krebs, posted in his blog that Target, one of the biggest US retailers, had suffered a massive data breach. The next day, Target announced that data from more than 40 million credit and debit card accounts had been stolen from its systems, and noting that they started a thorough investigation. Perhaps learning from Target’s mistakes, other organizations could achieve a goal of better protecting themselves and their customers’ information.

The Home Depot and Target have been one of the many retail establishments cyber attack breaches that have being targeted by cyber attackers. The Home Depot was the target of a cyberattack payment card system breach where their credit card information was basically stolen on September of 2014. The attacked occurred by attackers gaining third party credentials in order to gain access to the system, after they gained access to the system they weakened the system gaining their own access privileges. After doing all the mentioned above, malware was installed quickly on Home Depot’s self-check-out system. All these steps where taking by the cyber attackers resulting in the loss of more than fifty million credit card accounts and email addresses.

In December 2013, the CEO, Gregg Steinhafle, of Target announced that their company was affected by a data breach that occurred between November 27 and December 15, 2013. “Target disclosed that online thieves hacked into its computer system, stealing credit card or personal information from more than 100 million customers. Both personal data and credit card information may have been stolen from about 12 million people” (Abrams, 2014). The outcome of this breach has cost Gregg Steinhafle his job, as well as the trust of Target’s consumers, investors, and close to $150 million in breach-related costs. This breach is considered one of the largest retail data breaches in U.S. history due to the amount of personal data and credit card

From November 27 to December 15, 2013 Target Corporation released 70 million customers’ personal information. On average, it takes companies 200 days to uncover they are being hacked (Lunden, 2015). It only took Target 12 days to figure out the crisis that began happening. On December 19, Target originally said only 40 million credit and debit card accounts may have been compromised during Black Friday weekend to December 15. “The information stolen included customer names, credit or debit card number, and the card’s expiration date and CVV” (McGrath, 2014). Although Target never clarified how they were hacked, security experts say that hackers targeted their POS system. “Target spent $61 million through Feb. 1 responding to the breach, according

Recently with Target and General Motors is having to deal with the public opinion of doubt in part due to security risks and quality of product. Target has had a well-publicized security breach where customers sensitive information was made available. This obviously will have a negative effect on consumer confidence. It goes without saying in today’s market place and number of choices a person has to purchase a product to include E-commerce, network security is a must. Online market places advertise the use of third party secure payment with trusted names such as PayPal. With a brick and mortar store front, it is assumed or not even considered to be a risk by some. Target has stayed somewhat silent, it seems they are just

Target a large retail corporation that operates over 1,700 stores across the United States. They also operate as an online retailer at target.com. In 2012 the retailer earned more than $73 billion dollars in revenue and grew their sales by 5.1% from the previous year. Looking at the revenue and sales growth rate it is hard to fathom that more money could not be spent to ensure that consumer data is protected as much as possible. As information security specialists one of the worst things that can happen is our network gets infiltrated and customer information is stolen. On December 19, 2013 Target released a statement stating that they have had an information

The Target data breach remains one of the most notable breaches in history, it was the first time a CEO of a major corporation was fired due to a security event. The breach received an enormous amount of attention, it caused corporations and individuals to change the way they think about information security and data protection. Between Thanksgiving and Christmas 2013 hackers gained access to 40 million customer credit cards and personal data of 70 million Target customers. The intruders slipped in by using stolen credentials and from there gained access to vulnerable servers on Targets network to launch their attack and steal sensitive customer data from the POS cash registers. All this occurred without a response from Targets security operations center, even though security systems notified them of suspicious activity. The data was then sold on the black market for an estimated $53 million dollars. However, the cost to Target, creditors, and banks exceeded half of a billion dollars. This report will review how the infiltration occurred, what allowed the breach to occur including Targets response, and finally who was impacted by the security event.

In December 2013, Target was attacked by a cyber-attack due to a data breach. Target is a widely known retailer that has millions of consumers flocking every day to the retailer to partake in the stores wonders. The Target Data Breach is now known as the largest data breach/attack surpassing the TJX data breach in 2007. “The second-biggest attack struck TJX Companies, the parent company of TJMaxx and Marshall’s, which said in 2007 that about 45 million credit cards and debit cards had been compromised.” (Timberg, Yang, & Tsukayama, 2013) The data breach occurred to Target was a strong swift kick to the guts to not only the retailer/corporation, but to employees and consumers. The December 2013 data breach, exposed Target in a way that many

Today, we live in a technologically based world in which almost everything we do is done through computer-based technology. Communication, marketing, and even transactions are all done through technology. The danger of having all of your information online is that once something is on the internet, it is permanent. Whether it be your home address, phone number, or simply pictures of you and your family, you can never really remove anything. This can be both positive and negative. Negative because if your information slips into the wrong hands you can get into trouble. And this can be positive because with all kinds of people around the world posting information on the internet, it brings everyone a little closer together, making it easier to connect with people from all over the globe. One negative effect of the internet making the world a smaller place was Target’s data breach a few years back. In mid-December of 2013, Target experienced a crisis when criminals had forced their way into Target’s system, gaining access to many guests credit and debit card information. As the investigation continued, it was later determined that certain guest information, such as names, mailing addresses, email addresses and phone numbers were taken as well. Target has built its reputation of customer satisfaction over the years by providing excellent service to customers and having better discounts than their competitors,