More on the home Depot Breach

cruelsister

cruelsister

Level 43
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,225
Just wanted to pass on some depressing new news on the recent Home Depot massive breach. As has already been reported. someone somewhere in Home Depot clicked on a file that they should not have. The malware then dropped some files, the main malware disguising itself as a Mcafee Endpoint service.

Although an extra Mcafee service may be overlooked if Home Depot was using Mcafee, but they weren't (they used another extremely popular Endpoint system- the maker of which was also called in to investigate the breach). So the IT "Pros" at Home Depot suddenly see a service appear for a product that they don't use and just let it go on for 6 months while the malware transmits every Credit card number used at HD during this period to Russia.

Amazing.
 
  • Like
Reactions: rocky
Cats-4_Owners-2

Cats-4_Owners-2

Level 39
Verified
Honorary Member
Top Poster
Well-known
Dec 4, 2013
2,800
Maybe they thought McAffey had given Home Depot a free 6 month trial for Enterprise.o_O;) Lucky for those ' IT "Pros" ' cruelsister wasn't their boss, or they would have been cruel- fired!!:p:D
 
  • Like
Reactions: cruelsister
cruelsister

cruelsister

Level 43
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,225
I tried to give your post a dozen "Likes" but it won't let me...
 
cruelsister

cruelsister

Level 43
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,225
I know it seems like I'm obsessing over this (mainly because I am), but this thing is such a disappointment.Even sadder is the fact that the Exec's a Home Depot are sitting on the magnitude of the problem. With the breach at Target last December the malware had only about 19 days to collect data (the IT folks there got alerts, but considered them to be False Positives). With Home Depot the malware was active for 6 months.

And something else that's not exactly public (and may never be)- in the Target breach, the malware not only jacked current credit card purchases, but also looted the database of past purchases that Target kept- and the fools kept customer info on file for 10 YEARS.
 
cruelsister

cruelsister

Level 43
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,225
Finally an insider at Home Depot has come forward confirming exactly what security package they used (the identity of which I've danced around for the past few days). Yes indeed Symantec Endpoint was used. Note that in the story linked to above they blame the breach on HD using SEP 11 instead of SEP 12.1; what they don't mention is that the massive Target breach last December occurred on systems also protected by SEP, but in that case the product was current (12.1) and fully updated.
 
You must log in or register to reply here.

Similar threads

enaph
    • Wow
    • +Reputation
Privacy News Hisense USA Allegedly Breached, Customer Data Exposed
Replies
0
Views
854
Security News
enaph
enaph
Gandalf_The_Grey
    • +Reputation
    • Like
    • Wow
Security News Dell warns of data breach, 49 million customers allegedly affected
Replies
1
Views
1,928
Security News
ForgottenSeer 109138
F
Gandalf_The_Grey
    • Like
Security News Hackers breach US firm over Wi-Fi from Russia in 'Nearest Neighbor Attack'
Replies
0
Views
318
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top