Pennsylvania vendor linked to Target data hack
One of Target’s vendors, Fazio Mechanical Services, has been linked to the credit card hack of the retailer in November. The Sharpsburg, Pa.-based mechanical services company was themselves the victim of a hack where their credentials were stolen so they could be used to access Target’s system.
“Like Target, we are a victim of a sophisticated cyber attack operation,” Ross E. Fazio, the owner of the Fazio Mechanical Services, said in a statement. “We are fully cooperating with the Secret Service and Target to identify the possible cause of the breach and to help create proactive remedies to enhance the security of client/vendor connections make them less vulnerable to future breaches.”
The security breach occurred between November 27 and December 15 and affected over millions of Target shoppers.
Chief Financial Officer John Mulligan testified before a Senate committee last week and said that the attack lasted three days longer than originally reported when it was found out that some registers still contained the malware introduced by the hackers because they had been offline at the time the majority of registers were scrubbed of the software. Those registers, however, only affected around 150 additional customers. Nonetheless, millions of Americans have been forced to get new credit and debit cards because of the Target hack.