Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

Schnucks supermarket chain struggled to find breach that exposed 2.4M cards

Jaikumar Vijayan | April 16, 2013
The Schnucks supermarket chain struggled for two weeks to find the source of a breach that exposed credit and debit card information on as many as 2.4 million customers.

Existing forensics tools are not good enough at finding these attacks within hours, or even days, she said. "And the network and enterprise security tools are not smart enough to detect the hacking ... when it occurs.

"What's needed, and what some tech startups are working on, is behavioral modeling, base-lining and profiling of all nodes and communication ports in an internal network so that abnormal activity and communications can be detected -- even if the activity is only active a few seconds a week," Litan said.

"Of course this is very difficult to pull off without a lot of false positives and noise in the system, but this is what's needed," she added.

Jim Huguelet, principal of the Huguelet Group LLC, a firm that advises companies on compliance with credit card security standards, said the amount of time it took Schnucks to isolate the cause of the breach is longer than is typical.

"This could indicate that the malware was custom-written for Schnucks' environment or utilized unique techniques to hide its existence," he said.

"The number of cards compromised is significant given the relatively small size of the Schnucks chain and just proves that retailers of all sizes must be diligent in their protection of their payment processing systems," Huguelet said.

Schnucks did not respond to a request for comment.


Previous Page  1  2 

Sign up for CIO Asia eNewsletters.