Target data-breach settlement includes third-party cyber review

Target has reached a legal settlement with 47 of the nation's state attorneys general over a massive data breach in 2013, with the company agreeing to pay $18.5 million and submit to a third-party review of its cybersecurity measures.

Target has agreed within 180 days to “develop, implement, and maintain a comprehensive information security program that is reasonably designed to protect the security, integrity, and confidentiality of the Personal Information it obtains or collects from consumers,” according to the ...