Ransomware cyber

Target

May 8, 2024 1 min read
Target

In 2013, Target suffered a substantial cyber attack, affecting 41 million payment cards and compromising the personal information of approximately 70 million customers. This attack, orchestrated via a spear phishing campaign targeting a third-party vendor, allowed the attackers to infiltrate Target's network. Subsequently, they deployed malware to capture customer payment information over two months. The attack not only led to the CEO's departure but also resulted in significant financial repercussions for Target. The company incurred around $290 million in costs, encompassing fines, remediation efforts, consulting fees, and other related expenses, in an attempt to mitigate the damage and resolve nationwide claims brought against it.

Source: https://arcticwolf.com/resources/blog/10-major-retail-industry-cyber-attacks/

TPRM report: https://scoringcyber.rankiteo.com/company/target

"id": "tar204050824",
"linkid": "target",
"type": "Ransomware",
"date": "09/2014",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'customers_affected': '70 million',
                        'industry': 'Retail',
                        'location': 'United States',
                        'name': 'Target',
                        'type': 'Retail'}],
 'attack_vector': 'Spear Phishing',
 'data_breach': {'data_exfiltration': 'Yes',
                 'number_of_records_exposed': '110 million',
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Payment information',
                                              'Personal information']},
 'description': 'In 2013, Target suffered a substantial cyber attack, '
                'affecting 41 million payment cards and compromising the '
                'personal information of approximately 70 million customers. '
                'This attack, orchestrated via a spear phishing campaign '
                'targeting a third-party vendor, allowed the attackers to '
                "infiltrate Target's network. Subsequently, they deployed "
                'malware to capture customer payment information over two '
                "months. The attack not only led to the CEO's departure but "
                'also resulted in significant financial repercussions for '
                'Target. The company incurred around $290 million in costs, '
                'encompassing fines, remediation efforts, consulting fees, and '
                'other related expenses, in an attempt to mitigate the damage '
                'and resolve nationwide claims brought against it.',
 'impact': {'brand_reputation_impact': ["CEO's departure"],
            'data_compromised': ['Payment information', 'Personal information'],
            'financial_loss': '$290 million',
            'legal_liabilities': ['Fines', 'Nationwide claims'],
            'payment_information_risk': 'High'},
 'initial_access_broker': {'entry_point': 'Third-party Vendor'},
 'motivation': 'Financial Gain',
 'post_incident_analysis': {'root_causes': ['Spear phishing campaign',
                                            'Third-party vendor compromise']},
 'regulatory_compliance': {'fines_imposed': 'Yes',
                           'legal_actions': ['Nationwide claims']},
 'title': 'Target Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Third-party Vendor'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.