Target missed important warnings before security breach: report

The Target computer hack may have been preventable, according to a new report.

|
Reuters
Target must now fight to regain the trust of consumers.

Late last year, Target acknowledged that hackers had broken into the company's computer network, potentially putting the personal information of tens of millions of consumers at risk. It was, as some onlookers noted, nothing short of a "disaster." 

Now comes news that the company may have failed to act on warnings about the impending breach. In a cover story for this week's Bloomberg Businessweek, reporters Michael Riley, Ben Elgin, Dune Lawrence, and Carol Matlack allege that Target received alerts from its FireEye security platform, but that the alerts went unheeded in Target's Minneapolis HQ. 

Initially, Target told Businessweek that it was engaged in an ongoing investigation, and that reps didn't "believe [it was] constructive to engage in speculation without the benefit of the final analysis." Today, in the wake of the Businessweek story, the company issued a new statement. 

"Through our investigation, we learned that after these criminals entered our network, a small amount of their activity was logged and surfaced to our team. That activity was evaluated and acted upon," Molly Snyder, a spokesperson for Target, told Reuters. "Based on their interpretation and evaluation of that activity, the team determined that it did not warrant immediate follow up."

Ms. Snyder added that, "with the benefit of hindsight, we are investigating whether if different judgments had been made the outcome may have been different." 

The breach, coming as it did in the midst of the holiday shopping season, was seen as particularly damaging to Target, which now must fight to regain trust from consumers. Part of that process may be the exit of security chief Beth Jacobs, who announced earlier this month that she was resigning from her post immediately. 

"To ensure that Target is well positioned following the data breach we suffered last year, we are undertaking an overhaul of our information security and compliance structure and practices at Target," CEO Gregg Steinhafel said at the time. 

You've read  of  free articles. Subscribe to continue.
Real news can be honest, hopeful, credible, constructive.
What is the Monitor difference? Tackling the tough headlines – with humanity. Listening to sources – with respect. Seeing the story that others are missing by reporting what so often gets overlooked: the values that connect us. That’s Monitor reporting – news that changes how you see the world.

Dear Reader,

About a year ago, I happened upon this statement about the Monitor in the Harvard Business Review – under the charming heading of “do things that don’t interest you”:

“Many things that end up” being meaningful, writes social scientist Joseph Grenny, “have come from conference workshops, articles, or online videos that began as a chore and ended with an insight. My work in Kenya, for example, was heavily influenced by a Christian Science Monitor article I had forced myself to read 10 years earlier. Sometimes, we call things ‘boring’ simply because they lie outside the box we are currently in.”

If you were to come up with a punchline to a joke about the Monitor, that would probably be it. We’re seen as being global, fair, insightful, and perhaps a bit too earnest. We’re the bran muffin of journalism.

But you know what? We change lives. And I’m going to argue that we change lives precisely because we force open that too-small box that most human beings think they live in.

The Monitor is a peculiar little publication that’s hard for the world to figure out. We’re run by a church, but we’re not only for church members and we’re not about converting people. We’re known as being fair even as the world becomes as polarized as at any time since the newspaper’s founding in 1908.

We have a mission beyond circulation, we want to bridge divides. We’re about kicking down the door of thought everywhere and saying, “You are bigger and more capable than you realize. And we can prove it.”

If you’re looking for bran muffin journalism, you can subscribe to the Monitor for $15. You’ll get the Monitor Weekly magazine, the Monitor Daily email, and unlimited access to CSMonitor.com.

QR Code to Target missed important warnings before security breach: report
Read this article in
https://www.csmonitor.com/Technology/2014/0314/Target-missed-important-warnings-before-security-breach-report
QR Code to Subscription page
Start your subscription today
https://www.csmonitor.com/subscribe