Breached HVAC Firm Talks Target

Thursday, February 13, 2014 @ 03:02 AM gHale


Fazio Mechanical Services, Inc. confirmed reports it was the company whose systems ended up breached by attackers so they could hit the Target department stores.

However, the heating, ventilation and air conditioning (HVAC) company said it does not perform remote monitoring of the systems installed at Target as some researchers said.

RELATED STORIES
Target Attack: Vigilance Remains Vital
NIST Cybersecurity Framework: What it Means
Preliminary Cybersecurity Framework Released
DDoS Attacks: Smarter, Faster, Severe

Instead, the data connection between Fazio and Target was “exclusively for electronic billing, contract submission and project management.”

Fazio President Ross E. Fazio said the retailer is the only customer with which it had such a data connection.

“No other customers have been affected by the breach,” Fazio said.

Furthermore, he said all their IT and security systems are in “full compliance with industry practices.”

Because of the ongoing investigation, the company said it can’t provide any additional details, but added it is fully cooperating with Target and authorities to identify the causes of the breach.

In late January, Target representatives revealed that the cybercriminals stole credentials from a vendor in order to hack into their networks.



Leave a Reply

You must be logged in to post a comment.