Question

Write an abstract and Introduction for the case of Cyber Breach of Target case.

Answer 1

ABSTRACT

This case is about the cyber breach of data at the retail store of TARGET CORPORATION during the eve of Christmas in 2013. this breach data of approximately 110 million customer credit card information by malware named Kaptoxa Rescator. How Target corporation dealt with the situation internally and externally is briefly explained in this case. Also, this case discussed the critics faced by Target Corporation. A leadership role in tackling cybersecurity issues learnt from this case.

INTRODUCTION

Target corporation is one of the largest United States retail business which was attacked by hackers between the time period of November to December of 2013. This is the time of Christmas when maximum shopping is done via retail stores. On December 19 official notice released by target about a data breach, the impacted customer went from 40 million to 110 million people as per investigation. and Target is supporting customers on behalf of its company loss. On further investigation in mid-January of 2014, the company confirmed that malware software has been uploaded on to its point of sale operating system at all its store. This malware operated on the window operating system and would scan the credit card data extract it and send it via FTP. There are several arrests in this case and criminals have been taking the stolen credit information and attempt to open the account and clone the credit card to make purchases.

The official name of the malware Kaptoxa-Rescator. It works in the following ways-

• The malware would disable the internal network firewall..
• The malware would then begin to scrape the credit card data from data files.
• The malware would then save the credit card data to .dll file and prompt it to transfer.
• The malware would then establish the share for the file to load into for delivery.
• The malware would then send the share as the text file from the internal server at the target to the criminal server offshore.

RESPONSE TACTIC OF TARGET CORPORATION

• The Target corporation immediately deletes the malware trojan horse.
• It then swept the network for the entry and backdoor that malware used to enter the network.
• From a risk mitigation point of view, The Target corporation did financial insurance measures to reduce the burden.
• Target also decided to close several of its store in locations across countries.