Russian Teen Responsible for Malware Used in Target Data Breach
The same malware was also used in an attack against Neiman Marcus and could show up in other attacks against retailers, according to security firm IntelCrawler, which called it an "off-the-shelf" product called BlackPOS. A 17-year-old in St. Petersburg is believed to have written the code.
A first run version of BlackPOS was created back in March but there have been over 40 versions and mutations sold around the world since then. The first known infection occurred in retailer systems located in Australia, Canada, and the United States. Most of the targets have been department stores.
Target was hit particularly hard by the data breach. It was initially though that up to 40 million customers had their credit card details and other personal information swiped as a result of the cyberattack, but Target later said that up to an additional 70 million customers might also be affected in some way, bringing the total to 110 million potentially affected customers.