Nevada Attorney General Adam Laxalt, along with 47 other states and the District of Columbia, have settled with Target Corporation for $18.5 million following the company’s 2013 data breach that affected more than 41 million customer payment card accounts and contact information for more than 60 million customers. Investigators discovered that sometime around November 12, 2013, cyber attackers accessed Target’s gateway server through credentials stolen from a third-party vendor. The credentials were then used to exploit weaknesses in Target’s system. The settlement agreement also requires Target to develop, implement and maintain a comprehensive information security program, as well as to employ an executive or officer who is responsible for executing the plan.