Home Depot is yet another victim of credit card theft this year. They are in good company with Target, Michael’s, Specs, Neiman Marcus, P.F. Changs, and White Lodge. This trend shows us that retailers are having a tough year keeping ahead of their malicious adversaries. It’s being reported that the malicious actors were on the Home Depot network for almost 5 months. This really highlights the need to make the proper investment in security.
According to Brian Krebs, this is another targeted attack that seems to be linked to The Rescator Crew. Known for taking responsibility for the Target data breach, these Eastern European hackers have been making quite a bit of money selling stolen credit card data on the underground this year. Tuesday, a large batch of credit cards showed up on their merchant site that appear to be linked to Home Depot, according to various sources.
Home Depot said in a statement, “I can confirm that we’re looking into some unusual activity and we are working with our banking partners and law enforcement to investigate.”
“Protecting our customers’ information is something we take extremely seriously, and we are aggressively gathering facts at this point while working to protect customers. If we confirm that a breach has occurred, we will make sure customers are notified immediately.”
Home Depot is currently working to determine the extent of their data breach. As stated, they will inform all impacted customers as soon as the extent of the breach has been determined.
To detect this type of attack in your environment, you really have to rely on your defense-in-depth strategy and especially your log management and netflow solutions. Log management will allow you to identify unknown services on workstations that might be infected. Netflow will allow you to find large payloads of data going to countries that you may have on a watch list or with whom you don’t conduct business. So there are ways you can prevent more of these attacks from happening in the future. You just need to make the investment into the technology, people and process.