Poor network integration responsible for Target hack?

By VAR_Staffing
In Channel
February 10, 2014

VAR_Staffing / VAR Staffing

For most of the latest technologies, the common denominator behind their success is a proper network backing them up . Not only do organizations need to ensure that infrastructure can handle the traffic from multiple devices, but also data access is segmented properly for quality security.

This week, popular blog KrebsOnSecurity reported on the reasons behind the Target POS Breach. The company has been saying that the initial intrusion was traced back to stolen network credentials that were acquired from a third party vendor. However, unnamed sources have told the news outlet that the attack originated from Fazio Mechanical Services, an HVAC and refrigeration service that has done work for Target in the past.

According to the article, Fazio holds access rights to Target’s network to speed up the process of remotely monitoring things like energy consumption. However, because of Target’s lax segregate system, the criminals were able to hack in through Fazio’s remote access and move around undetected.

Once inside, they started uploading malware to a small number of POS systems just to make sure it worked properly. Once the test proved successful, it was deployed on a wider scale and was able to compromise the information of nearly 100 million consumers.

With more organizations needing to rely on strong network integration to support IT systems, it is critical that they are supported at all times. VARs and MSPs that specialize in network engineering can become valuable resources. VAR Staffing helps quality solution providers identify and recruit the impactful talent that is needed for this to be possible.

Read More