Target Hack Began With ... Refrigeration Contractor?
Hackers may have gained access through Pittsburgh company's computers
By John Johnson, Newser Staff
Posted Feb 8, 2014 10:34 AM CST
A Target store in Watertown, Mass.   (AP Photo/Steven Senne, File)

(Newser) – It's beginning to look like the hackers who got into Target's computer network did so by first hijacking the computers of an unlikely source—a company near Pittsburgh that provides refrigeration, heating, and A/C service to the chain, reports KrebsOnSecurity. Once hackers gained access to Fazio Mechanical Service's network, they were somehow able to get into Target's payment system. Fazio has confirmed that it got hit by a "sophisticated cyberattack operation" and is cooperating with the Secret Service and Target to figure out what happened.

Fazio says it submits bills and contract proposals to Target electronically, and that is presumably where the vulnerability occurred. That surprises security expert Chester Wisniewski of Sophos, who tells AP that something probably went wrong on Target's end. "If normal practices were followed, they wouldn't have been able to get access," he says. It's not clear what kind of setup Target had, but companies are not required to keep consumer information on a separate network, he adds.

More From Newser
My Take on This Story
To report an error on this story,
notify our editors.
Target Hack Began With ... Refrigeration Contractor? is...
Show results without voting
You Might Like
Showing 3 of 11 comments
Feb 11, 2014 7:07 PM CST
You're bound to get hit when your logo is a target!
Feb 10, 2014 4:29 AM CST
Ahh, the *new* "Internet of Things". Makes sense though, recent article about refrigerators joining spammer botnets.
Feb 9, 2014 4:09 AM CST
Computer Severs must be kept cool, to avoid overheating & shutting down. My workplace has dedicated AC/Refrigeration gear to keep our servers cool. . . So the story reflects the writer's lack of everyday knowledge & no fact checking.