On December 19th, 2013, a major corporation, Target, was victim to a data breach that affected more than 41 million of their customers payment card accounts. After investigation, it was determined that “cyber-attackers gained access to Target’s computer gateway served through credentials stolen from a third-party vendor in Nov. 2013. Using the credentials to exploit weaknesses in Target’s system, the attackers gained access to a customer service database, installed malware on the system and captured full names, phone numbers, email addresses, payment card numbers, credit card verification codes, and other sensitive data.” They now have to pay $18.5 million in settlements.