The Target Story
The attack on Target, which occurred during the holidays, has been all over the news, and it still is. I’ve read several articles on the incident, pored over differing opinions and viewpoints. The strange thing is, no one truly knows what happened and I sincerely doubt if anyone ever will. Although, it’d be nice if we could find out how hackers were able to grab data directly from the POS and siphon it out without being detected. It does make you wonder, with all the talk about layered security, internal protection and IDS, SIEM and the likes – wasn’t anyone watching? This went on for several days, mind you, I’m not talking about minutes or even hours – days. If Target does have a SIEM, what on earth were the people managing it doing? And if they don’t, why?? (Read more)