Abstract

The Home Depot data breach, which occurred in 2014, marked a significant turning point in the cybersecurity landscape, drawing attention to the increasing prevalence of ransomware and cyberattacks targeting large-scale retail organizations. This breach exposed the personal and financial information of over 56 million customers and highlighted the vulnerabilities in the systems used by major corporations. The attack was attributed to a sophisticated ransomware operation that gained access through a third-party vendor’s compromised credentials, ultimately enabling cybercriminals to infiltrate Home Depot’s network. This paper explores the Home Depot breach, focusing on its relation to the rise of ransomware as a common cyber threat. It delves into the tactics, techniques, and procedures (TTPs) employed by the attackers, the vulnerabilities exploited, and the broader implications for the retail industry and cybersecurity at large. Additionally, the study examines how ransomware has evolved from a relatively niche threat to a significant weapon in the cybercriminal arsenal, affecting organizations across all sectors. By analyzing the breach and its aftermath, this paper offers insights into best practices for cybersecurity resilience and incident response strategies that can help mitigate future threats of similar magnitude.