Quote:
Originally Posted by Blossom
Oh did they finally release how it was done? I thought Target was holding on to that info and not letting anyone know anything.  |
No, they have not. But Target has thousands of registers in the US and it's unlikely to me that they would get 40 million credit card numbers just from various registers. That big number says database hack to me.
Reading the article below and there is a subtle suggestion that the problems occurred during processing. Not at the registers, but at the point where Target aggregated the transactions from the registers and transferred them to the banks or credit card companies.
Quote:
|
Security experts say the Target hack is a reminder of security problems facing many retailers that won’t easily go away: There are weaknesses in the way payment information travels between retailers and banks.
|
Quote:
|
When shoppers pay for store purchases with credit cards, their payment data moves from the store’s terminal through the retailer’s network to the acquiring bank and credit card issuer. “At every hop it could be vulnerable,” said Mr. Kocher. “There have been attacks at every stop along the way.”
|
http://www.nytimes.com/2013/12/20/te...pper-data.html