Nation & World News

U.S. HVAC Firm Reportedly Linked To Target’s Data Security Breach

By Bill Chappell on February 5th, 2014

Hackers who broke into Target’s computer network and stole customers’ financial and personal data used credentials that were stolen from a heating and air conditioning subcontractor in Pennsylvania, according to digital security journalist Brian Krebs.

Target did not confirm Krebs’ version of events when he presented his story to the giant retailer, citing the ongoing inquiry into how credit card data was stolen. Krebs cites anonymous sources and a confirmation of a visit from federal officials to the HVAC company:

“Sources close to the investigation said the attackers first broke into the retailer’s network on Nov. 15, 2013 using network credentials stolen from Fazio Mechanical Services, a Sharpsburg, Penn.-based provider of refrigeration and HVAC systems.

“Fazio president Ross Fazio confirmed that the U.S. Secret Service visited his company’s offices in connection with the Target investigation, but said he was not present when the visit occurred.”

As for why an air conditioning company might need access to Target’s computer network, a security expert tells Krebs that retailers sometimes grant such access to let vendors make changes and adjustments remotely, in order to cut heating and cooling costs.

In tweets following publication of his story today, Krebs said it’s possible that Target’s customer information was segmented away from other areas of its network, to prevent unauthorized access to sensitive financial data — but the hackers figured out a way to get to that data.

In recent months, Target and Neiman Marcus have headlined a list of companies reporting data breaches. The stories have led Congress to look at how to prevent such incursions, as Elise Hu reported for NPR’s All Tech Considered earlier today.

Her story includes this quote from Sen. Al Franken, D-Minn.:

“Right now there’s no federal law setting out clear security standards that merchants and data brokers need to meet, and there’s no federal law requiring companies to tell their customers when their data has been stolen.”

Copyright 2014 NPR. To see more, visit http://www.npr.org/.

This entry was posted in News from NPR. Bookmark the permalink.
  • Sandra P

    Are tickets being distributed today? The time, but not date, of distribution is written above.

 

More Stories in News from NPR

Kaiser Carlile, 9, the bat boy for a summer-league team in Kansas, died Sunday after being injured in a game Saturday.

Bat Boy, 9, Dies After Being Struck In Baseball Game

During his team’s game Saturday, Kaiser Carlile was hit in the head by a bat as he ran past the on-deck circle. The tragic accident has left a Kansas community in mourning.


Journalists gather at Greece's Stock Exchange as it reopens on Monday, Aug. 3, 2015.

Greek Stocks Drop Sharply As Market Reopens For First Time Since June

When it opened, the Athens Stock Exchange General Index plummeted from 797.52 down to a new 52-week low of 615 — a drop of nearly 23 percent.


The track at Olympic Stadium during the London 2012 Olympic Games.

Review Of Leaked Test Results Shows Doping Is Widespread In Track And Field

The reports are based on the results of more than 12,000 blood tests from 5,000 athletes. Experts said analysis shows the sport’s governing body has failed to take sufficient action against dopers.


HitchBOT, a hitchhiking robot, sits with German tourists Sarah Strempel and Eric Vogel in the back seat of a vehicle as they and their companions prepare to leave Marblehead, Mass., after picking-up hitchBot for its first ride on July 17, 2015.

A Hitchhiking Robot’s Journey West Ends Early … In Philadelphia

The hitchBOT, as its creators named it, had already successfully traversed Canada and Germany. This summer, relying on the kindness of strangers, it wanted to travel from Massachusetts to California.


A close carbon-fired power plant outside Helper, Utah.

President Obama To Unveil Tough Proposal Targeting Greenhouse Gases

In the final proposal, Obama will unveil measures that are tougher than those in the 2014 draft proposal. The rules seek to curb carbon emissions from power plants by 32 percent by 2030.


Thank you for your support

WUFT depends on the support of our community — people like you — to help us continue to provide quality programming to North Central Florida.
Become a Sustainer
I want to support FM 89.1/NPR
I want to support Florida's 5/PBS
Donate a Vehicle
Underwriting Payments