In 2013, Target suffered a monumental cyber attack that compromised 41 million payment cards and contact information for roughly 70 million customers. This incident made headlines for its scale and the method of attack. Threat actors executed a spear phishing operation against a third-party vendor to gain credentials and access Target's network. Subsequently, malware was installed to harvest customer payment data over two months. The aftermath of this breach was severe, with Target's CEO leaving the company and the organization incurring approximately $290 million in costs related to fines, remediation efforts, consulting fees, and other associated expenses. The breach not only highlighted the vulnerabilities in supply chain security but also underscored the significant financial and reputational risks associated with cyber attacks on large retail operators.
Source: https://arcticwolf.com/resources/blog/10-major-retail-industry-cyber-attacks/
"id": "tar708050824",
"linkid": "target",
"type": "Vulnerability",
"date": "09/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"