Nation & World News

U.S. HVAC Firm Reportedly Linked To Target’s Data Security Breach

By Bill Chappell on February 5th, 2014

Hackers who broke into Target’s computer network and stole customers’ financial and personal data used credentials that were stolen from a heating and air conditioning subcontractor in Pennsylvania, according to digital security journalist Brian Krebs.

Target did not confirm Krebs’ version of events when he presented his story to the giant retailer, citing the ongoing inquiry into how credit card data was stolen. Krebs cites anonymous sources and a confirmation of a visit from federal officials to the HVAC company:

“Sources close to the investigation said the attackers first broke into the retailer’s network on Nov. 15, 2013 using network credentials stolen from Fazio Mechanical Services, a Sharpsburg, Penn.-based provider of refrigeration and HVAC systems.

“Fazio president Ross Fazio confirmed that the U.S. Secret Service visited his company’s offices in connection with the Target investigation, but said he was not present when the visit occurred.”

As for why an air conditioning company might need access to Target’s computer network, a security expert tells Krebs that retailers sometimes grant such access to let vendors make changes and adjustments remotely, in order to cut heating and cooling costs.

In tweets following publication of his story today, Krebs said it’s possible that Target’s customer information was segmented away from other areas of its network, to prevent unauthorized access to sensitive financial data — but the hackers figured out a way to get to that data.

In recent months, Target and Neiman Marcus have headlined a list of companies reporting data breaches. The stories have led Congress to look at how to prevent such incursions, as Elise Hu reported for NPR’s All Tech Considered earlier today.

Her story includes this quote from Sen. Al Franken, D-Minn.:

“Right now there’s no federal law setting out clear security standards that merchants and data brokers need to meet, and there’s no federal law requiring companies to tell their customers when their data has been stolen.”

Copyright 2014 NPR. To see more, visit http://www.npr.org/.

This entry was posted in News from NPR. Bookmark the permalink.
  • Sandra P

    Are tickets being distributed today? The time, but not date, of distribution is written above.

 

More Stories in News from NPR

LOOK! The Asteroid That Flew Past Earth Tuesday Has Its Own Moon

In celestial terms, asteroid 2004 BL86 buzzed the Earth, coming within 745,000 miles. Scientists were able to get a close look and capture some stunning imagery.


Times Square is mostly empty following road closures on Tuesday in preparation for what was predicted to be a major winter storm.

Winter Blizzard Skirts New York City, But Still Walloping Northeast

The forecasts had called for up to 30 inches of snow for the city, but the historic storm failed to materialize. By early morning, however, parts of Massachusetts had gotten more than a foot of snow.


Pvt. Arthur "Bud" Kelder served as a dental assistant in the Army during World War II.

Pentagon Identifies World War II Veteran Featured In NPR/ProPublica Investigation

After a long legal battle waged by a family member, the remains of Pvt. Arthur “Bud” Kelder have been identified by the Joint POW/MIA Accounting Command.


People walk past and take pictures of Swiss artist Peter Regli's "Snow Monsters 2015" during a storm in New York City Monday. Areas of New York and neighboring states are expected to get up to 2 feet of snow in a large and dangerous storm.

New England Expected To Bear The Brunt Of Nor’easter

Forecasters had predicted the storm could bring 1 to 3 feet of snow and hurricane-force winds. But early Tuesday morning, the National Weather Service downgraded some of the numbers.


Argentina's President Cristina Fernandez unveiled her plan to replace her country's intelligence service with a new agency. She delivered a televised speech while seated in a wheelchair in Buenos Aires.

Argentina’s President Dissolves Intelligence Agency, Citing Prosecutor’s Death

A week after an Argentine prosecutor was found dead on the eve of his testimony about an alleged government cover-up of a terrorist attack, President Cristina Fernandez unveils a new plan.


Thank you for your support

WUFT depends on the support of our community — people like you — to help us continue to provide quality programming to North Central Florida.
Become a Sustainer
I want to support FM 89.1/NPR
I want to support Florida's 5/PBS
Donate a Vehicle
Day Sponsorship Payments
Underwriting Payments