Essay on Tjx Security Breach

Words: 1101
Pages: 5
Open Document
The TJX companies breach has been labeled the largest data breach in the history of security breach and the ultimate wake up call for corporations (Dash, 2007). TJX is the parent company of chains such as TJ Maxx, Marshalls, Homegoods, and a host of retail stores across the US and Canada. In January 2007, it was discovered that hackers stole as many as 200 million customer records due to a failed security system by TJX which resulted in a $4.8 billion dollars’ worth of damages (Swann, 2007). It is said that the breach occurred because they did not have any security measures in place to protect consumer’s data such as their debit cards, credit cards, checking account information, and driver’s license numbers. Reports identified three major …show more content…
Industry standards were not sustained by TJX. PCI Data Security Standard 3.4 requires that at minimum, the customer's "primary account number" (i.e., the customer's card number) be "rendered unreadable (Berg, Freeman, & Schneider, 2008)." Furthermore, PCI Data Security Standards 3.5 and 3.6 require merchants to protect the encryption keys used for protecting customer data from disclosure and misuse (Berg, Freeman, & Schneider, 2008).
You protect the loss of confidentiality by ensuring that data is not disclosed to unauthorized users (Gibson, 2012) and in this case, it was not protected. Even though they authenticated users within their organization, they did not have anything in place that prevented intruders from getting access to their employees’ user ID’s and passwords. The fact that they were using a WEP wireless network connection did not protect against loss of confidentiality and this gave the intruders access. The loss of integrity prevents any unauthorized or unwanted modification of data (Gibson, 2012). Loss of integrity was not protected either, for it took years for TJX to notice that their system had been infiltrated by hackers. They were creating their own ID’s and passwords and the gatekeepers were clueless. Preventing the loss of availability ensures that the information technology (IT) systems and
Show More

Related Documents: Essay on Tjx Security Breach

How to Write a concept Essay

dditionally, Visa will suspend and rescind a portion of the data breach fines it levied on TJX's U.S. acquirer that remain eligible for appeal. Visa and TJX agreed to the suspended and rescinded fines in part because it would increase the funds available in the alternative recovery program. Not that the company is in the clear. According to a report from Merchant Link, which provides secure systems for retail outlets, the breach has cost the company more than $130 million to secure its infrastructure…

Words 991 - Pages 4

Essay on Breach X

BREACH AT X • What are the people, work processes and technology failure points that require attention? • What practices led to the security breach in TJX and why did such a smart andprofitable organization as TJX face such a situation? • Was TJX a victim of ingenious cyber crooks or did it create risk by cutting corners? Background a. Describe the company/department History 1. TJX was the largest apparel and home fashion retailer in United States…

Words 916 - Pages 4

Case Study On Data Security

that TJX’s customer data was either kept in plain-text format or the hackers were able to obtain the encryption key during the initial breach of the headquarters network. The customer data was also not stored appropriately; and it is believed TJX violated industry principles put in place to provide guidelines on how companies should store their customer’s data. “The TJX data storage practices also appear to have violated industry standards. Reports indicate that the company was storing the full-track…

Words 456 - Pages 2

Essay on minor case

particular computer on the Internet. The port number identifies a particular program running on that computer. b) List the five ‘quality of service’ parameters that we have discussed this semester and that form a central platform in information security management. Concisely explain the meaning of each of these…

Words 2337 - Pages 10

Short-Term Impact Of The TJX Teenagers Case

The financial impacts felt by a reduced feeling of customers certainty, TJX additionally had short-term financial related impacts loaded on it as $139 million in charges on the accounts of its shoppers. Not exclusively were the settlements to a great degree costly, however, the vouchers are offered to customers for the burden of supplanting driver's licenses and different types of distinguishing proof cost the organization a tremendous amount of money as well. Generally speaking, the organization…

Words 306 - Pages 2

Student: Wal-mart and Tjx Companies Essay

10-K Integration Project Winter McNair Tuesday – SBU Section TJX Companies, Inc. Team Manager: Winter McNair Date: 02/14/2013 PESTEL 1. Political “We are subject to risks associated with importing merchandise from foreign countries.” (Page 14) TJX Companies, Inc. has stores in 15 countries, on two continents, and has relationships with over 15,000 vendors globally. TJX Companies imports a great deal of merchandise from South East Asia and is often subject to various political risks…

Words 4037 - Pages 17

Customer Engagement Technologies And Consumerization Of IT Cloud Computing

I N G I N T O U C H W I T H O U R G U E S T: T E C H N O L O G Y T R E N D S HMD 226 Dr. Jungsun (Sunny) Kim 7 TRENDS Customer Engagement Technologies Consumerization of IT Cloud Computing Big Data Social-Mobile Convergence Green IT Data Security & Privacy 2 1. Customer Engagement Technologies (CETs) • Operators have realized that customer engagement is a more strategic way of building a deeper and enduring relationship between the customer and the company/brand. • Although the concept…

Words 1346 - Pages 6