Home Depot hack

Looks like the same style as the Target hack.
Break in because of poor security, pivot across to the POS devices. Sets up exfiltration domains, collecting keystrokes and customer data from various machines, siphons out the data over months. Internal IT security doesn't notice a damn thing until the banks and yer man Krebbs came calling. Super interesting malware. Not very elegant, but damn does that seem effective. And the whole thing could have been prevented if they protected and monitored not just the perimeter, but all sensitive devices on the networks.

And they Symantec to do the incident response. Symantec will farm out the real POS memory forensic work to Mandiant etc.

But I guess the cards from HD will yield much more for the cyber crims.
I've been looking into the malware they likely used (Backoff). It seems to be pretty advanced. Also looks like the malware didn't just get the dumps off the cards, but that they may have been able to correlate this to customer records. That will make this an extremely damaging event for Home Depot.
Part of the reason the Target hack wasn't as bad as it could have been is apparently that tons of the Target customers had already more or less maxed out their cards. The "base" got a bad rep and the cards were sold for a pittance on the black market. This base seems to be selling for approx 10 times the amount as the Target hack. Likely because they were able to tie it to ZIP code and other data which will allow the Ruskis to defeat many of the security checks that they will be implementing.