Target CEO Gregg Steinhafel shed more light on the data breach at his company's stores Monday morning, citing "malware installed at our [point-of-sale] registers" and vowing to make "significant changes."
"Clearly, we're accountable, and we're responsible. But we're gonna come out at the end of this a better company," Steinhafel said during an interview on CNBC. "And we're gonna make significant changes."
He added: "We are not gonna rest until we understand what happened and how that happened."
Steinhafel also aid he is pushing for EMV technology, a chip-and-PIN system that would replace magnetic strips. That wouldn't happen until the end of 2015 at the earliest, though.
Target last week disclosed that data from as many as 110 million customers may have been compromised during two cyberattacks. In December, Target admitted that credit card details from 40 million customers were at risk. The company said last week that an internal probe revealed data like names, physical addresses, email addresses and phone numbers from 70 million customers were also at risk. Though there may be some overlap between the two incidents, the retailer said as many as 110 million customers may have been affected.
As a few security experts pointed out, the latter data may be evidence of an attack that went beyond POS. "It would appear that the attacker got to servers that had all this other information," says Alan Kessler, CEO of cloud security firm Vormetric.
Steinhafel's CNBC appearance is part of a larger cleanup campaign Target is making after the data breach. The company also took out a full-page ad (embedded below) Monday in New York Daily News, featuring an apology letter from Steinhafel to "Target Guests."
Image: Mashable
Image: Joe Raedle/Getty Images