According to a Reuters report based on "sources familiar with attacks on other merchants," Neiman Marcus and Target weren't the only high-profile, US retailers to be hacked during the 2013 holiday season. The news agency did not identify what specific retailers have also been affected, but it reports at least three other US retailers ("with outlets in malls") suffered breaches that have yet to be publicly disclosed.
These additional attacks allegedly implemented the same techniques that infiltrated Target. While Target has not officially disclosed any techniques, Reuters' sources said one of the hacking tools was a RAM scraper. The news agency describes this as memory-parsing software "which enables cyber criminals to grab encrypted data by capturing it when it travels through the live memory of a computer, where it appears in plain text."
RAM scraping is not a new tactic, and Ars Security Editor Dan Goodin has covered similar tools before (see sidebar). He notes RAM scraping is useful when dealing with encrypted information, since sometimes the only way to access the underlying plaintext is to extract it from computer memory. Still, it's important to note that the RAM scraping detail from Reuters is still speculative, and the agency acknowledges it's only one of a variety of techniques that may be involved.Reuters' sources suspect these additional hacks were carried out by the same individuals who attacked Target, but they could not say this with certainty since the Target culprits have yet to be identified. Reuters reports that law enforcement agencies suspect the Target hackers are from Eastern Europe, a recent hotbed for such activity.
reader comments
56