An investigation by Bloomberg Businessweek has found that Minneapolis-based Target ignored several warnings that could have stopped the massive data breach that impacted holiday shoppers.
MNN says a report shows that malware was detected as early as November 30, and an alert was sent to Target.
A second alert went out December second but no action was taken.
Federal law enforcement contacted Target on December 12, and it took the retailer until December 15 to confirm and destroy the malware — after 40 million credit card numbers were already stolen. It was four more days before Target went public with the breach.
Target spokeswoman Molly Snyder told Bloomberg that the company gets a vast number of alerts in a given week and it wasn’t until the company started investigating the breach that they discovered, “A small amount of criminal activity.”