Target taking actions on security, executive says

WASHINGTON — An executive of Target Corp. said Tuesday the retailer has taken actions to shore up security following the massive breach of millions of consumers’ data during the holiday season.

The testimony at a Senate hearing by John Mulligan, executive vice president and chief financial officer at the No. 2 U.S. discounter, also revealed that Target discovered an additional 25 cash registers infected by malicious software on Dec. 18. The company had said earlier that it had removed all the malware from its system by Dec. 15.

Mulligan’s testimony before the Senate Judiciary Committee was the first public appearance by a Target executive addressing the issue since the breach that occurred between Nov. 27 and mid-December. An estimated 40 million credit and debit card accounts were affected.

Mulligan said Target is “deeply sorry” for the effect of the data theft on consumers, and he acknowledged that their confidence in the Minneapolis-based company has been shaken.

Sen. Patrick Leahy, D-Vt., the panel’s chairman, said the erosion of consumers’ confidence — with data breaches on the rise affecting retailers, Internet companies and others — could hinder the U.S. economy’s recovery.

The recent data hackings at Target, luxury retailer Neiman Marcus and arts-and-crafts chain Michaels Stores “compromised the privacy and security of millions of consumers,” Leahy said.

Senators pressed Mulligan and Michael Kingston, senior vice president and chief information officer at Neiman Marcus Group Inc., about how quickly they notified customers of the breaches.

Mulligan said Target executives were told on Dec. 12 by the Justice Department of suspicious activity involving payment cards. The company started an investigation, removed malware and publicly announced the data theft on Dec. 19.

A processing firm told Neiman Marcus of a problem on Dec. 13, and the company’s investigators made a report on Jan. 2, Kingston said. Customers were notified on Jan. 10. The malware causing the breach appeared to have been operating in many Neiman Marcus stories between July and October, Kingston testified.

An estimated 1.1 million accounts were affected.

More in Herald Business Journal

Teddy, an English bulldog, models Zentek Clothing’s heat regulating dog jacket. (Ian Terry / The Herald)
Everett clothing company keeps your dog cool and stylish

Zentek uses space-age fabrics to moderate the temperature of pets and now humans.

Everett engineers learn lessons from Mexico City catastrophe

Structural scientists went to help after the September earthquake there and studied the damage.

Providence Hospital in Everett at sunset Monday night. Officials Providence St. Joseph Health Ascension Health reportedly are discussing a merger that would create a chain of hospitals, including Providence Regional Medical Center Everett, plus clinics and medical care centers in 26 states spanning both coasts. (Kevin Clark / The Daily Herald)
Merger would make Providence part of health care behemoth

Providence St. Joseph Health and Ascension Health are said to be talking. Swedish would also be affected.

Hospital companies merge as insurers encroach on their turf

An anticipated deal between Providence St. Joseph Health and Ascension is only the latest.

DaVita to sell off medical groups including The Everett Clinic

Another round of health care consolidation means The Everett Clinic could soon get new ownership.

Engine trouble hits Air New Zealand’s 787 Dreamliners

A Rolls-Royce engine was shut down and was afterward found to be seriously damaged.

Washington, Amazon sue company over seller training programs

Braintree is accused of using deceptive ads promising information on how to make money on Amazon.

Providence said to be in talks for merger with Ascension

The two Catholic health organizations have been exploring joining forces, sources say.

Lockheed-Martin dominates global arms sales, Boeing is 2nd

The combined sales of U.S.-based companies totaled $217 billion.

Most Read