Report: Target says breach at vendor led to data theft

MINNEAPOLIS — Target reportedly said a data breach at an unidentified vendor led to hackers obtaining phony credentials that allowed them to gain access to Target’s systems and steal the information for 40 million credit and debit cards, as well as the personal data of about 70 million consumers. According to the Associated Press, Target did not offer any specific details on who the vendor was or how hackers obtained the credentials.

A Target spokesperson did say the retailer has taken steps to help make data breaches more difficult in the future, such as restricting or updating outside access to some of its platforms.