Data Security

Exposed Target source code legitimate, employees say

Target released an open-source tool to combat web-skimming earlier this month. Pictured: A sign hangs outside of a Target store on Jan. 13, 2021, in Chicago. (Photo by Scott Olson/Getty Images)

Internal source code and documentation from Target Corporation exposed by a threat actor on the public software development platform Gitea were confirmed to be legitimate by current and former employees of the major U.S. retail firm, Bleeping Computer reports.

Hadoop datasets and other technology stack elements revealed by the leaked data sample, including tooling for a customized Vela-based CI/CD platform and JFrog Artifactory, were noted by a current and former worker to be consistent with internal systems leveraged by Target, while another former employee disclosed the use of the exposed internal system names for the company's on-premise and cloud app deployment and orchestration tools.

Such an internal development environment compromise has prompted immediate access changes to Target's on-premises GitHub Enterprise Server, according to a current employee. While more information regarding the incident remains scant, Target was noted by Hudson Rock co-founder and Chief Technology Officer Alon Gal to have had its internal services compromised following an infostealer attack against an employee workstation in September.

"It's especially relevant because, despite tens of infected Target employees we've seen, almost none had IAM credentials and none had wiki access, except for one other case," Gal added.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds