Remember the TJX hack from earlier in the year? Well more details have been released by the Canadian Privacy Commissioner about how all the credit card information stolen in the hack actually got out. 

It seems that the card information was stolen be eavesdropping on wireless communications at two Marshals stores in Miami. It seems that the company collected far too much information, retained the information too long and relied on weak encryption to secure the information.

The stores where using Wireless networks for carrying the information that they where collecting, however they had chosen to use WEP to secure the Wireless networks, it seems that TJX had been struggling converting their Wireless networks to infrastructure using newer and considerably more secure WPA to provide link layer security.

Well it just goes to show that if your still using WEP and your doing anything remotely sensitive over the air on the Wireless network, the reward is certainly worth the minimal effort required these days to crack a WEP protected network.

You can see more of the findings from the Canadian Privacy Commissioner here.

Add this page to your favorite Social Bookmarking websites