The Impact of

Technology
Talk to me

What is the purpose of Human

Life?
We must be free to engage in creative actions.
By doing so, we should be able to maximise our potential as
intelligent, decision making beings.
- Norbert Wiener, US Mathematician, creator of Cybernetics, who thought Computer
Ethics needed a justice base
- With this in mind, he set out four values affirming justice as the foundation for
society.

Norbert Wieners Values

(Considered to be important to a well-run business)
The value of Liberty
Freedom for the employees to be innovative & develop strengths in their
work

The value of Equality

Freedom from inequities at workplace with respect to gender, age or
race

The value of Goodwill (benevolence)

A gesture of goodwill lays the groundwork for trust, to opening up to the
other in a way that builds connections & reciprocity

The value of Freedom

Minimal infringement of freedom (restrictions placed for the good of the

Edward Snowden & the NSA

Edward Joseph Snowden (born June
21, 1983) is an American computer
professional, former Central
Intelligence Agency (CIA) employee
and former contractor for the United
States government who copied and
leaked classified information from the
National Security Agency (NSA) in
2013 without prior authorization. His
disclosures revealed numerous global
surveillance programs, many run by
the NSA and the Five Eyes
Intelligence Alliance with the
cooperation of telecommunication
companies and European
governments.

Is he a whistle blower?
Key components set out by Peter B Jubb, an Ethicist:

1.
2.
3.
4.
5.

It is an intentional act.
It is not required or coerced.
It creates a public record.
The whistle-blower accessed the incriminating data or information.
It reveals potential/actual wrongdoing under the control of an
organisation.
6. It is shared with an entity capable of addressing the wrongdoing.

Targets Data Breach

Heres how the Target data breach unfolded over the past five months:
Nov. 27 - Dec. 15, 2013: Personal information, including names, mailing addresses and phone numbers,
of 40 million customers who used credit and debit cards at U.S. stores are exposed to fraud.
Dec. 13, 2013: Target executives meet with the U.S. Justice Department.
Dec. 14, 2013: Target hires a third-party forensics team to investigate the hack.
Dec. 15, 2013: Target confirms that criminals had infiltrated its system, installed malware on its point-ofsale network, and potentially stolen guest payment and credit card data. Target removes malware from
"virtually all" registers in U.S. stores. The public remains unaware of the data breach. This was the
last day stolen data was transmitted to the compromised FTP server.
Dec. 18, 2013: Data and security blog KrebsOnSecurity first reports the data breach. The Secret Service
investigates.
Dec. 19, 2013: Target publicly acknowledges the breach, saying its under investigation and the
information accessed included credit and debit card numbers and card expiration dates, with no indication
that PIN numbers were impacted, according to a spokesperson. Customers jam Targets website and
customer service hotlines.

Targets Data Breach

Dec. 20, 2013: Target says very few credit cards compromised by the breach have resulted in
fraud and offers U.S. customers a 10 percent discount off in-store purchases for the last
weekend before Christmas. The retailer also announces it has no indication that birth dates or Social
Security numbers were accessed in the breach.
Dec. 21, 2013: JPMorgan Chase & Co. (NYSE:JPM) places daily limits on spending and withdrawals for its
debit card customers affected by the Target breach, begins reissuing cards and opens some branches on a
Sunday to help Target customers.
Dec. 22, 2013: Transactions at Target fell 3 percent to 4 percent compared to the year earlier
on the last weekend of holiday shopping before Christmas. Other retailers report strong results.
Dec. 23, 2013: Targets general counsel Tim Baer hosts a 30-minute conference call with state attorneys
general as the company works with the U.S. Department of Justice, Secret Service and others. 3 class
action lawsuits with more than $5million damages sought.
Dec. 27, 2013: An ongoing investigation by a third-party forensics unit finds that encrypted debit
card PIN information was accessed during the breach, but Target says it believes PIN numbers
remain secure.
Jan. 10, 2014: Target says an additional 70 million customers had personal information stolen
during the breach, including emails. The company lowered its forecast for its fourth quarter, saying

Targets Data Breach

Jan. 10, 2014. Although Target share prices had held relatively steady since the initial damage after the
breach announcement, the addition of 70M more accounts sent Target shares dramatically downward
to almost 13% off from its Nov 20th peak The same day, Target announced the closing of 8 stores.
Further, Target predicted its Q4 adjusted earnings per share would drop 20%. It claimed a 2.5%
drop in sales during this quarter.
Jan. 16, 2014: And if you thought the breach could not get worse, Target announced that the
compromised data extends far back in time, to as long ago as a decade.
Jan. 19, 2014: IntelTrawler identified the author of BlackPOS as Sergey Taraspoc, a Russian 17year old. Taraspoc reportedly sold this software on black market forums for $2000 to dozens of
cybercriminals in Easter Europe and other countries. Note that this does not mean that Taraspoc was the
perpetrator of the Target compromise, merely that he may have written the original software modified to
perpetrate the breach. Russian Security firm Groupd IB claimed the BlackPOS malware has been used on
customers of major US banks, such as such as Chase (Newark, Delaware), Capital One (Virginia,
Richmond), Citibank (South Dakota), Union Bank of California (California, San Diego), Nordstrom FSB Debit
(Scottsdale, Arizona)." The Reedum version used at Target was specifically modified to avoid detection.
Jan. 22, 2014: Target lays off 475 employees at its headquarters in Minneapolis and worldwide and
leaves another 700 positions unfilled.

Targets Data Breach

Feb. 4, 2014: Target CFO John Mulligan testifies before the U.S. Senate Judiciary Committee, mentioning
the ongoing investigation but offering no new information on who might have hacked the data. Mulligan
says Target has invested hundreds of millions in data security and rejects claims that its systems werent
up to par. Other witnesses discuss the benefits of chip-and-PIN technology, used widely in
Europe but not in the U.S., where banks and retailers have balked at the expense.
Feb. 18, 2014: Costs associated with the data breach topped $200 million, a report from the Consumer
Bankers Association and Credit Union National Association finds.
Mar. 7, 2014: Target lets its employees wear jeans and polos to work in an effort to boost morale after
layoffs and the sales-killing data breach.
April 30, 2014: Target says it has committed $100 million to update technology and will
introduce chip-and-PIN technology for its debit and credit cards by early 2015.
May 5, 2014: Bob DeRodes, a former tech adviser in several federal government agencies, takes over as
Targets chief information officer. Target CEO Gregg Steinhafel resigns.

Targets Data Breach

May 21, 2014: When Target filed its Form 8-K on May 21st, it said it could not predict the total costs required to
respond to the massive payment card data breach. Rippleshot CTO, Randal Cox, broke down the
estimated costs for the Target data breach and believes Target could end up paying $2.6B after the
dust settles.
July 1, 2014: Top Class Actions reports that to date over 68 class action lawsuits have been consolidated in
the U.S District Court of Minnesota over claims that the retailer failed to protect customers financial data. U.S
District Judge Paul Maguson set an August 25th deadline for customers to file a consolidated complaint. It is
estimated that as many as 100 cases could potentially join this litigation. All motions to dismiss must be filed by
October 1st, while all who wish to join the litigation must file motions by December 1st. Class Certification
motions will begin in April 2015, and the case must be ready for trial by April 1st, 2016, according to the Order..
July 31, 2014: A former PepsiCo executive , Brian Cornell, has been named the new chairman and
CEO of Target Corp. Ensuring Target's customers that the protection of their personal information is a top
priority will be paramount for Cornell's first task as chairman and CEO
Dec. 2, 2015: Target agreed to a $39 million settlement with several U.S. banks on Wednesday over a
data breach that affected roughly 40 million customers. The banks lost millions when they were forced to
reimburse customers who lost money in the massive 2013 hack of Target's database. The banks, which service
MasterCard, filed a class action lawsuit against Target after rejecting an earlier $19 million deal. MasterCard had
tentatively approved that deal in April on behalf of its card issuers, but several of the banks rejected it. The
banks in the class action lawsuit include Umpqua Bank, Mutual Bank, Village Bank, CSE Federal Credit Union, and

Targets Data Breach

Given the value of stolen credit

cards (one stolen credit card can
sell on the black market for as
much as $100), The New York
Times reports, we can be sure
this is not the end of such

 THANK YOU!