Hackers may have used Pa. company to hit Target - 21 News Now, More Local News for Youngstown, Ohio -

Hackers may have used Pa. company to hit Target

Posted: Updated:
  • More NewsMore>>

  • YSU Stem College Dean cut from list of presidential candidates

    YSU Stem College Dean cut from list of presidential candidates

    Thursday, April 24 2014 6:12 PM EDT2014-04-24 22:12:22 GMT
    Dr. Martin AbrahamDr. Martin Abraham
    The Youngstown State UniversityBoard of Trustees has revealed the names of the six finalists seeking the YSU presidency.Althoughformer Ohio State and YSUcoachJim Tresselmade the cut, Dr. Martin Abraham's name is absent from the list.Below are the names submitted by the Youngstown State University Presidential Search Advisory Committee: Mary Cullinan Gary L. Miller Gayle L. Ormiston D. Marshall Porterfield Steven M. Rothstein James P. TresselTressel, who interviews for the University of Akron...More >>
    The Youngstown State UniversityBoard of Trustees has revealed the names of the six finalists seeking the YSU presidency.Althoughformer Ohio State and YSUcoachJim Tresselmade the cut, Dr. Martin Abraham's name is absent from the list.Below are the names submitted by the Youngstown State University Presidential Search Advisory Committee: Mary Cullinan Gary L. Miller Gayle L. Ormiston D. Marshall Porterfield Steven M. Rothstein James P. TresselTressel, who interviews for the University of Akron...More >>
  • Part time Lowellville policeman charged with abduction

    Part time Lowellville policeman charged with abduction

    Thursday, April 24 2014 5:19 PM EDT2014-04-24 21:19:29 GMT
    A part-time Lowellville police officer faces charges of abduction and unlawful restraint.The Mahoning County Grand Jury handed up a two count indictment against 46-year-old Roger Vance.According to the indictment, Vance used force or a threat to restrain a 40-year-old womanin lateFebruary.The case was investigated by the Mahoning County Sheriff's Department after Lowellville's Police Chief received the initial compliant and asked the outside agency to get involved.Sheriff Jerry Greene says th...More >>
    A part-time Lowellville police officer faces charges of abduction and unlawful restraint.The Mahoning County Grand Jury handed up a two count indictment against 46-year-old Roger Vance.According to the indictment, Vance used force or a threat to restrain a 40-year-old womanin lateFebruary.The case was investigated by the Mahoning County Sheriff's Department after Lowellville's Police Chief received the initial compliant and asked the outside agency to get involved.Sheriff Jerry Greene says th...More >>
  • Youngstown man sentenced for slashing and stabbing woman and her daughter

    Youngstown man sentenced for slashing and stabbing woman and her daughter

    Thursday, April 24 2014 4:34 PM EDT2014-04-24 20:34:48 GMT
    A Youngstown man has been sentenced to ten years in prisonafterpolice say he tried to murder a woman and her daughter. 32-year-old Jamar Berry plead guilty earlier to charges of attempted murder, assault and burglary.Berry was accused of slitting the throat of a woman and stabbing her 16-year-old daughter at their Craiger Avenue home last December.Both victims survived the attack.More >>
    A Youngstown man has been sentenced to ten years in prisonafterpolice say he tried to murder a woman and her daughter. 32-year-old Jamar Berry plead guilty earlier to charges of attempted murder, assault and burglary.Berry was accused of slitting the throat of a woman and stabbing her 16-year-old daughter at their Craiger Avenue home last December.Both victims survived the attack.More >>

NEW YORK (AP) - The hackers who stole millions of customers' credit and debit card numbers from Target may have used a Pittsburgh-area heating and refrigeration business as the back door to get in.

If that was, in fact, how they pulled it off - and investigators appear to be looking at that theory - it illustrates just how vulnerable big corporations have become as they expand and connect their computer networks to other companies to increase convenience and productivity.

Fazio Mechanical Services Inc., a contractor that does business with Target, said in a statement Thursday that it was the victim of a "sophisticated cyberattack operation," just as Target was. It said it is cooperating with the Secret Service and Target to figure out what happened.

The statement came days after Internet security bloggers identified the Sharpsburg, Pa., company as the third-party vendor through which hackers penetrated Target's computer systems.

Target has said it believes hackers broke into its vast network by first infiltrating the computers of one of its vendors. Then the hackers installed malicious software in Target's checkout system for its estimated 1,800 U.S. stores.

Experts believe the thieves gained access during the busy holiday season to about 40 million credit and debit card numbers and the personal information - including names, email addresses, phone numbers and home addresses - of as many as 70 million customers.

Cybersecurity analysts had speculated that Fazio may have remotely monitored heating, cooling and refrigeration systems for Target, which could have provided a possible entry point for the hackers. But Fazio denied that, saying it uses its electronic connection with Target to submit bills and contract proposals.

The new details illustrate what can go wrong with the far-flung computer networks that big companies increasingly rely on.

"Companies really have to look at the risks associated with that," said Ken Stasiak, CEO of SecureState, a Cleveland firm that investigates data breaches. Stasiak said industry regulations require companies to keep corporate operations such as contracts and billing separate from consumer financial information.

Stasiak emphasized that the thieves would have still needed to do some serious hacking to move through Target's network and reach the checkout system.

Chester Wisniewski, an adviser for the computer security firm Sophos, said that while it may seem shocking that Target's systems are that connected, it is a lot cheaper for a company to manage one network rather than several.

He added that while retailers are supposed to keep consumer information separate, they are not required to house it on a separate network.

Still, he said he was extremely surprised to hear that the hackers may have gotten in via a billing system, saying those kinds of connections are supposed to provide extremely limited access to the other company's network.

As a result, while the hackers were clearly talented, it's obvious something went wrong on Target's end, he said.

"If normal practices were followed, they wouldn't have been able to get access," Wisniewski said.

Secret Service spokesman Brian Leary confirmed that investigators are looking into the attack at Fazio Mechanical Services, but wouldn't provide details. Molly Snyder, spokeswoman for Minneapolis-based Target, would not comment.

Federal prosecutors in Pittsburgh referred calls to their counterparts in Minnesota, who would not discuss the investigation.

In the weeks since Target disclosed the breach, banks, credit unions and other card companies have canceled and reissued cards, closed accounts and refunded credit card holders for transactions made with the stolen data.

The Consumer Bankers Association said that its members have replaced over 17.2 million debit and credit cards as a result of the Target breach, at a cost of over $172 million.

Target has said its customers won't be responsible for any losses.

___

AP reporter Joe Mandak reported from Pittsburgh.

Copyright 2014 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.

  • SpotlightSpotlightMore>>

  • Updated

    The Scrappers host “POPS at the Ballpark” featuring the Youngstown Symphony Orchestra

    The Scrappers host “POPS at the Ballpark” featuring the Youngstown Symphony Orchestra

    Tuesday, April 15 2014 2:04 PM EDT2014-04-15 18:04:57 GMT
    NILES, Ohio – The Mahoning Valley Scrappers and the Youngstown Symphony Orchestra are excited to host one of the Valley's premiere summer events, POPS at the Ballpark,More >>
    NILES, Ohio – The Mahoning Valley Scrappers and the Youngstown Symphony Orchestra are excited to host one of the Valley's premiere summer events, POPS at the Ballpark, presented by Stanley E. Shearer with Northwestern Mutual and 21 WFMJ on Saturday, August 23, 2014 at Eastwood Field.More >>
  • More From wfmj.comMore>>

  • Restaurant plans new statue of Joe Paterno

    Restaurant plans new statue of Joe Paterno

    Wednesday, April 23 2014 12:57 PM EDT2014-04-23 16:57:56 GMT
     (AP) - Fans of the late Penn State University football coach Joe Paterno are planning to commission a new bronze statue of him, and place it across from the school. Organizers say the statue will feature Paterno sitting on a bench reading. It's expected to cost about $300,000 and would hopefully be done in 2015 by Philadelphia sculptor Zenos Frudakis. Penn State spokeswoman Lisa Powers says the school isn't involved in the plan. But a restaurant owner in downtown State Col...More >>
     (AP) - Fans of the late Penn State University football coach Joe Paterno are planning to commission a new bronze statue of him, and place it across from the school. Organizers say the statue will feature Paterno sitting on a bench reading. It's expected to cost about $300,000 and would hopefully be done in 2015 by Philadelphia sculptor Zenos Frudakis. Penn State spokeswoman Lisa Powers says the school isn't involved in the plan. But a restaurant owner in downtown State Col...More >>
  • Woman allegedly sold heroin from hospital bed

    Woman allegedly sold heroin from hospital bed

    Wednesday, April 23 2014 11:01 AM EDT2014-04-23 15:01:45 GMT
    A woman in western Pennsylvania is accused of selling heroin from a hospital intensive care unit and a hospital room.More >>
    A woman in western Pennsylvania is accused of selling heroin from a hospital intensive care unit and a hospital room.More >>
  • Jet stowaway undetected for hours before departure

    Jet stowaway undetected for hours before departure

    Tuesday, April 22 2014 11:44 PM EDT2014-04-23 03:44:25 GMT
    Surveillance cameras at San Jose International Airport successfully captured the teenager on the tarmac, climbing up the landing gear of a jet. But in the end, the cameras failed because no one noticed the security...More >>
    A 15-year-old stowaway who survived a flight over the Pacific in a jet's wheel well spent seven hours undetected in what is supposed to be a highly secure area of San Jose International Airport before the flight...More >>
  • Hot ClicksHot ClicksMore>>

  • Can an app save the planet?

    Can an app save the planet?

    This startup's Earth Day launch has a massive goal: Cut carbon emissions globally. It has its work cut out for it.
    More >>
    This startup's Earth Day launch has a massive goal: Cut carbon emissions globally. It has its work cut out for it.
    More >>
  • 'Captain America' holds onto top box office spot

    'Captain America' holds onto top box office spot

    Monday, April 21 2014 10:47 PM EDT2014-04-22 02:47:39 GMT
    LOS ANGELES (AP) - Captain America really is unbeatable - at least at the box office"Captain America: The Winter Soldier" has been the top draw at theaters for three consecutive weeks, vanquishing would-be foes including the new thriller starring Johnny Depp.According to Monday's final box office figures, the Marvel sequel added $25.6 million in ticket sales over the weekend. "The Winter Soldier" has made more than $200 million domestically since logging the best April opening in history."Hea...More >>
    LOS ANGELES (AP) - Captain America really is unbeatable - at least at the box office"Captain America: The Winter Soldier" has been the top draw at theaters for three consecutive weeks, vanquishing would-be foes including the new thriller starring Johnny Depp.According to Monday's final box office figures, the Marvel sequel added $25.6 million in ticket sales over the weekend. "The Winter Soldier" has made more than $200 million domestically since logging the best April opening in history."Hea...More >>
  • Netflix poised to raise prices after strong 1Q

    Netflix poised to raise prices after strong 1Q

    Monday, April 21 2014 10:37 PM EDT2014-04-22 02:37:26 GMT
    SAN FRANCISCO (AP) - Netflix is preparing a sequel unlikely to be a hit with its subscribers. The Internet video service is about to raise its prices for the first time in three years to help pay for more Internet video programming such as its popular political drama "House of Cards."The increase, to take place sometime before July, will hike prices by $1 or $2 per month for new customers. The company's nearly 36 million current subscribers will continue to pay $8 per month for at least the n...More >>
    SAN FRANCISCO (AP) - Netflix is preparing a sequel unlikely to be a hit with its subscribers. The Internet video service is about to raise its prices for the first time in three years to help pay for more Internet video programming such as its popular political drama "House of Cards."The increase, to take place sometime before July, will hike prices by $1 or $2 per month for new customers. The company's nearly 36 million current subscribers will continue to pay $8 per month for at least the n...More >>
Powered by WorldNow
All content © Copyright 2000 - 2014 Worldnow and WFMJ. All Rights Reserved. For more information on this site, please read our Privacy Policy and Terms