A Sharpsburg, Pa.-based mechanical services and HVAC company has spoken out about its connection to the November data breach that compromised millions of Target shoppers.
Fazio Mechanical Services has confirmed in an online statement that the company is involved in an ongoing federal investigation surrounding the breach. The company's connection to the breach was revealed when sources told Brian Krebs of technology security blog Krebson Security that hackers used network credentials stolen from Fazio to break into Target's network.
A Target spokeswoman declined to comment on the report.
The statement by Fazio President and CEO Ross E. Fazio said the company's data connection was "exclusively for electronic billing, contract submission and project management" and it is not responsible for remote monitoring of cooling, heating or refrigeration for Target. It said the breach hasn't affected any of Fazio's other clients and that the company's IT and security measures are in line with industry best practices.
"Like Target, we are a victim of a sophisticated cyberattack operation. We are fully cooperating with the Secret Service and Target to identify the possible cause of the breach and to help create proactive initiatives that will further enhance the security of client/vendor connections making them less vulnerable to future breaches," reads the statement.