MtnGoat
02-15-2014, 16:41
I couldn't find the thread discussing the Target credit card fiasco. Looks like two Mexicans were arrested along Texas Border.
http://www.cbsnews.com/news/target-credit-card-fraud-suspects-arrested-at-texas-border/
Target credit card Intrusion is great in showing how attackers can enter not just by a point of sale POS device or software or malware. The Target attackers picked an HVAC repair company as a conduit for hacking into Targets secure system. Like the last year we had refrigerators within homes being used as computers zombies or box or whatever you want to call conducting so-called attacks on outsiders. You can read about this in technology thread, it was already post by another member. So if you're not up to speed on the whole Target attack (intrusion) here is the BLUF. The attackers used malware-laced (virus) email shear-phishing attack sent to employees of an HVAC company that did business with Target. You would think they did some good social engineering, but from reading nothing different them the normal of what goes out there. Spam style email that has a subject line that makes you open it. The attackers didn't do any kind of spoofing or anything like that it was the typical emails attacks. So if a HVAC repair or installation company can have an email sent down that then has a my where virus that then gets downloaded onto their system which in turn means that one of their employees most likely plugged in a USB drive which was then infected with the my where which that USB drive was taken to the target stores and uploaded inadvertently. One other way the attackers could be like The refrigerator system that was discussed last year. This HVAC system had a computer system, most like would be a control module that was tied to the Internet. Which was tied into the Target corporate level computer network system and an HVAC employee took a USB drive plugged it into the HVAC control module which was then laced with a malware-laced document that then started the intrusion into the Target POS attacks. Great reads here on the whole background.
http://krebsonsecurity.com/2014/02/email-attack-on-vendor-set-up-breach-at-target/
Got to love Krebs "OPEN-SOURCE INTEL" section in the blog article. Something that should be looked at.
First look here: http://krebsonsecurity.com/2014/01/a-first-look-at-the-target-intrusion-malware/
http://www.cbsnews.com/news/target-credit-card-fraud-suspects-arrested-at-texas-border/
Target credit card Intrusion is great in showing how attackers can enter not just by a point of sale POS device or software or malware. The Target attackers picked an HVAC repair company as a conduit for hacking into Targets secure system. Like the last year we had refrigerators within homes being used as computers zombies or box or whatever you want to call conducting so-called attacks on outsiders. You can read about this in technology thread, it was already post by another member. So if you're not up to speed on the whole Target attack (intrusion) here is the BLUF. The attackers used malware-laced (virus) email shear-phishing attack sent to employees of an HVAC company that did business with Target. You would think they did some good social engineering, but from reading nothing different them the normal of what goes out there. Spam style email that has a subject line that makes you open it. The attackers didn't do any kind of spoofing or anything like that it was the typical emails attacks. So if a HVAC repair or installation company can have an email sent down that then has a my where virus that then gets downloaded onto their system which in turn means that one of their employees most likely plugged in a USB drive which was then infected with the my where which that USB drive was taken to the target stores and uploaded inadvertently. One other way the attackers could be like The refrigerator system that was discussed last year. This HVAC system had a computer system, most like would be a control module that was tied to the Internet. Which was tied into the Target corporate level computer network system and an HVAC employee took a USB drive plugged it into the HVAC control module which was then laced with a malware-laced document that then started the intrusion into the Target POS attacks. Great reads here on the whole background.
http://krebsonsecurity.com/2014/02/email-attack-on-vendor-set-up-breach-at-target/
Got to love Krebs "OPEN-SOURCE INTEL" section in the blog article. Something that should be looked at.
First look here: http://krebsonsecurity.com/2014/01/a-first-look-at-the-target-intrusion-malware/