Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


TJX Intrusion Highlights Pursuit of Corporate Data



 By: Matt Hines
2007-01-18
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


  Table of Contents:
  1. TJX Intrusion Highlights Pursuit of Corporate Data
  2. ' Data Theft Versus Hardware '

Rate This Article:
Poor Best
TJX Intrusion Highlights Pursuit of Corporate Data
( Page 1 of 2 )

Unlike hardware thefts such as stolen laptops, the TJX data theft proves that hackers and malware code writers are determined to get at sensitive corporate information.

The potentially massive data theft reported by discount retail conglomerate TJX Companies illustrates the continued efforts of hackers to rob businesses of their most valuable information.

On Jan. 17, the company, based in Framingham, Mass. which operates a handful of North American and European retail chains including T.J. Maxx, Marshalls, HomeGoods and A.J. Wright, reported that a computer systems intrusion may have compromised the personal data of an undetermined number of customers.

TJX officials said that outsiders were specifically able to gain access to the portion of its computer network that retains its customers credit card, debit card and check information, along with data related to merchandise return transactions.

The information involved was drawn from the companys T.J. Maxx, Marshalls, HomeGoods and A.J. Wright stores in the United States and Puerto Rico, along with its Winners and HomeSense stores in Canada.

TJX said the data theft may also affect customers of its T.J. Maxx stores in the United Kingdom and Ireland, as well as its Bobs Stores chain in the United States.

Resource Library:

TJX operates an estimated 2,500 retail locations in total.

While the company did not reveal how many customers may be affected by the incident, TJX said that a majority of the data involved is related to individuals who shopped at its stores in the United States, Canada and Puerto Rico during 2003, and between May and December 2006.

Company officials said that they have been able to isolate a limited number of credit and debit cardholders whose information was removed from its systems, as well as a smaller group of people whose drivers license details were stolen.

In addition to working with all major credit and debit card firms to help investigate any related fraud, along with law enforcement officials including the U.S. Department of Justice, U.S. Secret Service and the Royal Canadian Mounted Police, TJX said it has directly contacted individuals whose information was known to have been exposed via the intrusion and is offering additional customer support to people concerned that their data may have been compromised.

A number of banks have issued warnings to customers whose data may be involved in the incident, as have the credit card brokers.

TJX said it kept a lid on the details of the intrusion up until now at the request of law enforcement officials. This quiet period has become a common practice as investigators attempt to gather evidence of data incidents before details of the events are made public.

Since the break-in was discovered, TJX said it has "significantly strengthened the security of its computer systems" and hired IT specialists General Dynamics and IBM to help further investigate the intrusion and assess the volume of data that may have been stolen.

Click here to read more about how data thieves are targeting the enterprise.

"Since discovering this crime, we have been working diligently to further protect our customers and strengthen the security of our computer systems and we believe customers should feel safe shopping in our stores," Ben Cammarata, chairman of TJX Companies said in a statement.

"Our first concern is the potential impact of this crime on our customers, and we strongly recommend that they carefully review their credit card and debit card statements and other account information for unauthorized use."

TJX said it is continuing its investigation to determine whether any additional customer information may have been compromised.

Next Page: Data theft versus hardware theft.





  Reader Comments: TJX Intrusion Highlights Pursuit of Corporate Data
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Network Security & Hardware Articles          >>> More By Matt Hines
 


xr㶲(;; YڦxH)ْZc[^fI}U*$ERϮO7t$3q7NƖnt7F;?{{~$rCKg8(ٟ:þO ޛ'Tw>sLj9UQ#RSrĠ建>u۵Az:p;|9|@D%j'AM3c{Fm_62z9گ3 fEgM5drZC'A:4-Z P8"x,Z="?*B4eIXߢȱ7{Xe376m CKd/B(?F#c?=~'f^B(ƻF{94}Gd`9rt=yͰ { /\1r.bL{{w4ɿd9c';{R'-,v2M*-f)u8r x08ryj5jfOM {n_%z(uw<:$]3~bA2xưaIHl6XB?p'C]tQV_սYoAׁn܍=gf̳L]b6Jۆ@ظuBaHCj8E&rؗ#Yև3ͰL.o@6cM-*R<<<<<L{5406Z-JjgdǓ)I|[8fI~9]^Czn&j ݒUB_;XȏKŗG)Hk7 ocH@w[@k+UykQ 4f!`J 0kfr@kFPYD`6R\ 9lb )6B̄H )ƃ7R<&,)|YB* brݢPP3nS%EI7#DD vx0~B(:pHqbNbO}Ɛs}zlNTVʒ0Wb{CoQ#L .ϱV$U.[n} 8^%g 5F8 ,heݴ%!8WG5MGR>M獯fz\CU9-|Qnɐ2e8l ԰2>#}fywӾAkӧI|JlZ趝x>:AGAticŦh@7&&h`C=҉:L wF|hx: !a`Nr!FAтMx>tw&>l d $4)syp;LM)σ-HˋF0P 2/?>axşP}MrA=S9{ݴiǀxt83(.%w2J}cn.G))(P]HPw9J B!\0HV0(VF􎄰R1iJlRi gRTD;7 KŔ=*%nqR%a 934YIjL=?j1!UG,D`v9J,L.Y ϴje[+R,4T(p0 =cGV+%EUC`HLMq'3ߴa!m{f33p#Eq"M(24LXh4l:Z7E^Pݳy 0Ќ7_azTf>LddGٚMs[L^͘3eІ:'_ ˙ u9\;N/=҃1 4f/7O)j`>J7n2gNP/h|WY 3EDVhdF!! = \PȭT)w^IY䞅T_9YX X`>ťHL)mtй+>q^v.iC@ӬXKuooE[1(ĿKúJjp -Ho` koռE_xue8HiK-#rB`}.E6GQ4lJ &Ϳۇ{gO͑I>+UVOLYZf<[)ZXbY;wl ʸ>6 [IFlp|:.MKϱ("]r;6O7<<fq'Ia e-6BSbg`m1Jx#e\48L XbOF.#NWɅcͧۋ Ң{Z^SvԻ~5Gl2ݴZ歰C`V9QNg43aJ }Ӛ#{Ow')]ٰ\R ~j"yd\s˰e0sWμ + ;0E<& {HeX7t%_(ƤOMqс,` tV8wf|<@? v: C\4<`4pf mWq=[JjJwg `Z~,pԿC XsEMzʮO1"Qeڟs;d跸6] Q|lص`Č)Ԩ5UV *~mzoR.E׌Lt0ȀN{Glȡ5ThvϷ h#քX[ў#WX tV ЛiQdS7EtjCA֌M:kl30UfSfyr;WKU05u 2 \ zOtn_LYEnCW!SD9^%Lwܒ; k@X;V-(7ϙ40p2^=]*WlYP;,g|m6Si4D63ȈDrzzB*>_l6a9L6[JI) `uVDZ)~9HǞ1|]4|Yy1uk'Sim}KU>}Д1Ze ɢ7)ЬV#i@/ixN3 a6}b;?/i)T",߸X,W̱^`. JU-A^Mo6=ITPGQ>=}Hc#&ahxmb=Z"FR5oTbPQKJBgQ!WfA֐2B0J3ڛ5^@M|GO 0u%hzGSqza\/;n/$h ^2alJwѸZC8fS5u8I,+o*M&n@uzlɪ+> 2*ijARϢsw@:Lpz]Qd:)nQ==յћn@h# &w|}}}WI@*5]*{ sKs8q=C H\}TK(,~w9ـo9 |\V* rF2R@BZNb.xlēo -"} ?‚'T'n\'+cI`Eq8x 26/ȟ-1P7׏ZU{"}QL Xޟpفbßyc(m'@ޏcvw~D ۦ>\e¼zO퇧;vݹ:|L[(@?^-{^j\00C~W/GtL`MUSj_6޷pC-tj2}e'A)`Q>rfWϋFپz/w᳋Y/ `yBN׹p.7WKߧ ?wL.W-)^s-y0WԸh:bQ*atո F>m48Z&IyD 5^6Q}A5q4[7Y0z!B3ZMUc z E0ע8?V   k@JA=Voha{iD-bT1J?_RJMQ=#ijfsL '((9Q_[aۗo1Mr!}J_cN/Ͳh<"]{pУ3YTJqkf\a~:)}B-N9˙~LҼ"g Í76w jEΧ p!#N M5W"v-{t1aTwޣd e~=m0겨uC$L<2GN)tJȓ(E=)*ښIդ"8I5F4A2 uIH? Md4XPW HقtW'59ܻ8^]Ҿ|s<'c1! sgS {:`AO[[ıp߆؁ ?O.yror7&N[s8AxnՆ6,qx\2&i]%3 ՛wD/ ZR{+!bi4V3[T=}z÷sD>dO#@/,vd鼳~2/> AؖrbLp$`G-ݺܭ)³$`GDA7}g˩g涣A jm Z0\k9f> V2ÿ_L·⎭zgQy}rx|[q$[+' g|o#&_MnUKN+_C_bJKѴg=.0Sa_˽x2.mE>zQc%Fm?^ϗIO 4˼Ƿ Y/aImx{DQ q(%~2H tŭϏE.tC>ݯR[~ srZVU+'z#еr^ǀDbFEOiO{E|l$!2ggaM-5'B/Vş d~BG589tx ena̰K`Gm&O&tןP SOo#cݒof`Bٱ*wһJ"ug=KMOWA[Qj-^7Fk#¹,%"~ɛ;sm*PN{ <-1p]|Iޝˑ;3 *q4^*Vr0,?'$EL0'0~/n!ɳ렳(:&2ϝ,OYMh$ T` gikJSuLd #1QT(ib[3" */}U>,V=bL8J^I?y|DZ ^\Vk{i܂I|)ĉ֦?c8'Hy649ȎI.2K:-򿛣{Gr9Ώ#/}x<8ya2H' SQ"J׊SGb#a!Ǜ@vGja)'Pyb~ _Pk⋧۵R3Mk7o9$Y"P#vȆYgiJJ+˽" 9L:^Z̦g?37SsJʒ B0ʩ - #_H`""B[HbEB)B'R'$HPWEhRURo2XN{:ś҉n gC<z{2'n/?\9 a AN8و8og}ۚVޖU /*H. \R]a)$La73xq0Hp $BpOj-Qo_wW9,S",:Qb}6$ ;jKl9JxR(cQи>ڑ ^^ڕ4ISҋsץ Rt]D/`HM.OͨG$|[_lk7y9ܖ_DќJg{;= F"hD4Ahɑvžv0u멬fLSsMM,b\L.J)_p $j]٘''OXAU=,c11*4Ao>o>o>o>liP#uKJN+ eQI8-KFqM"IjlN_K|&/fK.-|%.@G_fB|5!^% $X`MX׷%땥9,_qe7:@ s4$^=:":쒟l`#1<2-6yA-R[r֋]y70JMjdm հtEo ےn 7ne.|'XoL08׷%UHM1c ֨IQa14tM^}c-Ǵ6]z$73n<} &W?'lCUy3K3y77777fT5P}ĸu7O~W6Yp+N 9uIGˠ# x`|[ȋ`@X\80"S)?᥯팋10b3mH$i9SNE{s- N!5@B-< osg.+'\X5z6A`oMDW3ONv-Vվ,3޷ʑmM]˙S )0g^Xerʕa&,K4[szIЯCK<:gX 'p3de\ IF}iμAZ.JQ+܏: Swg71G`]_gP|ʸ(j븺e)C&.^W&$ ё[30,^s<{mXo Dk35"A-[o6௶eul:/2].qWzlnJif-e։5V$1"*NhV .P2aBDKopAFhk~Z~i//m~ ^[,&_U6lXbw2О$bM#}M[\*bd=-Tw߁^<@&!05p9gӸ{l`vtq"o(\zX67m ~VxrMv 7(9kƦc64$} UIcl|=DZ7xT&ݥ1e1?,h67h`am_`n3m˻y+A1q0Ga0j?ߋ.A!?SL{5)0&_" ~+Vq:/.d7'|{l0ek('>?Ew<:ZGY nbu+B]@,6au()ȁ.bB#ʫ1ʱ, <ߋ4",pZ4'*䀲eBbJbFyA y!Fv{Kb+AJ7$qяHUWkg+ , s"Y"'"KIE/]^|~8. 4Zc쁠e3)Muk 0b"ΩTh,vxUȥkc.ZE9TWK.}KBG2KN+ߥtW BZctWes[ɣ.j"B- jD-~0 7|^3Ht3#66j=!v 7j=!vc֦v̈́||W@O[jkwfhDPUԹUN(/ƄF[T8vXj 1 6;Ňmخ [Kx6_j~BR.gI* ]Z 0!g5lW-T;Վ˛sW5Uj*ִa. F#xĝI\1ړnc JZP-0o5UqX*!EL>b%LtxZډ.R|׈q@ eˡ/0Ÿm54&ȱr QvĸCCpo㽻Ԙm%5Dh#eƞNgvx 4H۠[*н"%&hPjߛÎL}1~"js{:._`{qX &ͬ-j%!V㬤]F-Rt3smS?PÏt]j:N#V¯R^fVܞVk=M$xL!;zZ#ZNHh5J' 4&G̦5ǘ\TbЭB1˪M;InP}sY?e=` ' ^f#nʏZU{F dM,{|Ul|%w[ҥnZ,]}17ۤ`(8NI}x+VzK"?{|'QfـjcE~:tdkB{A=~{DLRO\q\X!,E||z['AU}H?Km1Hhb#3F:P0\ :~h/U{Z7] dP_su..49a]<=8`(Lw A'ʘ80[:?pa)}rA1HSTΨn?\uCW#W'p`\`sr@KL*2&Bs8ortLYL%&9a k(E$Txۈdy 6ӆKDqS}%ߺH"V|8snjS|6XP؟?pk&Hbiu~fVK) &X`,2E< x} t@xdj,yǥ}-AG,G71=` ?vb.usx\jHVcPB<_Dk3ޝ/#}|AaPZ  +z+U'I]Ui_)9CȮ KDU8|.OeY,f/cob\iBR. ?$-GF쌆xɺi$͈ɵ7>Xz39ܐ9iHI}kwIsǬ} \MGݩ;'U}LLGƿd&R0mw 5Uš\ «.Y.2U94dG_0=4e/3K D(?@?2/2*c|@~2 *c:NF;:_?3޿x&7./P_3*>e )~P~U{mF$)cF5qvJEsQ^O2T}~)PWgP g ~-2:B @n~ kL+ťW*7YKxM}%kkZ1nvd}חG{1*,xW& s hxVydb bye?VPw;]CҤ]j.{%])r-XѧZ}5_99q t=}3>cT7'%Y#/ܻ Gz‰nQ!L2f~<'ԊnOArt_Ew[a9nדpKSG0%nsOkr>u"[~|^YylcP[Йqe~ޢD)Fyk@gzY)W8#~u̞^ UxbٴV`,}Tq4 j9uYu8% {Y&@Y8'}t)hعj 1㲐WCtz m̹H|7v1XoX&HΝ rQӊj~JR' a،bxUUEVro9 VVK D`q9#Tx|Demګ.Psc<{+4аY-P=^?&G&^nk"/c@6of!3^8սD<gu~o2P e Sbb{ˈT`TlJx ף3Ϩ^ocƥ 6%dή1vfuʿ.,p&~G ? 3ΕD تGѨscwL} O?g)b|3S7rLB΄[4п#|s%(u5ג 5t0=_ SP2-#6O,5U,%O|\I$Nɱwؼ!H0BNX?/ C||'o:$ p1Q.`=)}i[Ed%ݤq%*A)m&Ĵ`Ջ⣭A=0&FFo"9ţ*aѾ(Yc{XnD8_];/aoAU.,x(ZJq}ZtA6H-mgrlCkWvu7L[Τaœj@@rvpm1Lf%$z 2 ~#pIi/1SNLtW?u60H-tKGJ= %4Id`kȉ{)B9 H|\k,##1苌Y MЦ = B8̈́dN`'8=Ǧ eԿt}_ r:'쭰F |m)Ӿf,ӣu''}M5>~ˋoM"~|1qN@U}ˆ 1,'j :BQFA}F垓$gg_5b Fy&b3@p+aipO1Su .Ыvc7f9e7Cx_ԕU`g#~"3V[œA6`0C3`܀}olI-Oyw죗iOJ F ϱɮy*3@FWD0;"Zim,KE%&(Xp\'AΙls;>Da2\DGx kok3gzϷ{<=v7sg'+_2qqN`WH؂{XiWe1RpCV)tO狰BNtHEk,^zXѽ&gP9NRjã ,c<ԭ<P0_C^&?c5Vqٮ7GLcݰKQaW:n uywDn^sQaWO\+{@7* ٔ6s3a=`>]x O00F"eS1'@n0\|H d9[\K^مt3\j9/YH~> \99.@OI"cXM1}aE|1GǩW.rW=aMd|Zk/o?XY'5.xH%Dn`gnVXvQJed֌V&|ƷZ2cˤ_ ?7N)