The blogger who first disclosed the attack says thieves started work at least two months in advance. Thieves stole the network credentials from Target’s heating and refrigeration contractor via an e-mail phishing attack sent to the contractor’s employees at least two months before they began