Target Traces Data Breach to Credentials Stolen From Vendor

Target said cyberthieves stole credentials from one of the retailer's vendors in order to access its system, according to an ongoing forensic investigation into a data breach that may have exposed information from as many as 110 million customers. The company said that since disclosing the hack Dec. 15, it cleared its system of the malware that had been planted. "In addition, since that time we have taken extra precautions such as limiting or updating access to some of our platforms while the investigation continues," Target spokeswoman Molly Snyder said in a statement Wednesday.