Sign in with
Sign up | Sign in

Target Hackers Took Personal Info Too

By - Source: Target | B 13 comments

Oh my. Last month Target confirmed that hackers managed to access its computers and stole the credit and debit information of around 40 million customers who shopped at Target between November 27 and December 15. The thieves reportedly had access to customer names, credit card numbers, expiration dates and encrypted PIN numbers.

Now the company is reporting that certain "guest" information was also taken during the data breach including mailing addresses, phone numbers and email addresses for up to 70 million individuals. The company's report states that much of this data is partial in nature, and that Target will contact affected customers if it comes across an email address.

"I know that it is frustrating for our guests to learn that this information was taken and we are truly sorry they are having to endure this," said Gregg Steinhafel, chairman, president and chief executive officer, Target. "I also want our guests to know that understanding and sharing the facts related to this incident is important to me and the entire Target team."

Target's report states that guests will have zero liability for the cost of any fraudulent charges arising from the breach. The company is also offering one year of free credit monitoring and identity theft protection to customers who've shopped in the U.S. stores. Guests will have three months to enroll in the program, the report states.

Currently, Target has established a dedicated website that provides information about the data breach such as an FAQ, a message from the CEO, credit monitoring, identity theft protection and more. The site even provides a copy of emails Target has sent out to guests likely so that Target shoppers aren't dismissing them as spam.

"We are partnering with a leading third-party forensics firm to conduct a thorough investigation of the incident and to examine additional measures we can take that would be designed to help prevent incidents of this kind in the future," reads one bulletin. "Additionally, Target alerted authorities and financial institutions immediately after we discovered and confirmed the unauthorized access, and we are putting our full resources behind these efforts."

For more information about the breach, head here.

Display 13 Comments.
This thread is closed for comments
  • 2 Hide
    chicofehr , January 10, 2014 11:55 AM
    This has to be the worst hack ever when it comes to the amount of people & $$$ effected. I suspect Targets profits won't very good after they have to pay for all the damage & lawsuits & not to mention their tarnished reputation.
  • 1 Hide
    hotroderx , January 10, 2014 12:56 PM
    I hope I am wrong and I understand things happen but I am not sure Target is going to survive this. The fact that new information keeps coming out that continues to paint this in a darker light is not helping targets rep at all. The fact so much information was stolen over such a large time frame also makes things worse. I think the hit there reputation alone is going to destroy them sadly.
  • 0 Hide
    Rhinofart , January 10, 2014 1:06 PM
    I really don't get the Lawsuit thing. People broke into Target's systems and stole stuff from them. Any company with an Internet presence can and will get hacked at some point. It's not IF, it's WHEN. Nothing like kicking someone in the balls while they are down as long as it makes you a buck or 2 eh?
  • 0 Hide
    soldier44 , January 10, 2014 2:30 PM
    I wonder if they know how many guns and ammo I have in the house too, that way if they come around they can get riddled with lead... Hack that.
  • 0 Hide
    derekullo , January 10, 2014 3:02 PM
    Target released a video saying how sorry they were:

    http://www.youtube.com/watch?v=TvkKoDiC4zc
  • 1 Hide
    JamesSneed , January 10, 2014 5:02 PM
    I know its the thieves fault but I also know something about protecting credit card data and the standards imposed. Some of the fault lies squarely on Target. I hope more companies learn from this, encrypt your data from the point it comes in your system i.e. right there on the damn credit card scanner and store it encrypted if you store it at all and possibly even decrypt/encrypt the data right before storing so your using a different key for stored data. Anyhow I had my card stolen as part of this which wasn't a big deal other than being without a card for a few days.
  • 1 Hide
    mstngs351 , January 11, 2014 12:37 AM
    My girlfriend works in the electronics department at our local Target. Unfortunately for her simple minded fools keep coming in and flipping her crap like it's her fault. Yelling, cursing or just being rude whenever they use their credit card. That combined with starting a new semester of college has definitely stressed her out. Slapping stupid/rude people should be legal...
  • 1 Hide
    techguy911 , January 11, 2014 6:22 AM
    PCI has rules about credit/debit card information storage it MUST be encrypted once leaving the terminal that said they broke the rules and are subject to fines per card could go as high as 6+ billion.
  • 0 Hide
    ddpruitt , January 11, 2014 8:09 AM
    What's really interesting is that Target specifically mentions their own card when offering fraud protection and identity theft. Does that mean screw you if you don't have one of their cards?
  • 0 Hide
    10tacle , January 11, 2014 10:34 AM
    This won't be the end of Target/Supertarget. They have great merchandise and some excellent sales. They are a step above Wal Mart/Super Wal Mart. Their stores are cleaner (notice the shiny floors in Target vs. dull and dirty floors at Wally World) and more organized and tidy (Wally World shelves and merchandise presentation look like a rummage sale). With that said, I will not be shopping there again until full confidence is restored in their security. I missed this hack by just three days (IF the starting date of 11/27 is accurate even).
  • 0 Hide
    dizchick , January 12, 2014 6:23 PM
    And it's not "just" Target, Neiman Marcus got hacked, but only announced a couple days ago. Why do these companies wait so long?"Ginger Reeder, spokeswoman for Dallas-based Neiman Marcus Group Ltd., said in an email Saturday that the retailer had been notified in mid-December by its credit card processor about potentially unauthorized payment activity following customer purchases at stores. On Jan. 1, a forensics firm confirmed evidence that the upscale retailer was a victim of a criminal cyber-security intrusion and that some customers' credit and debit cards were possibly compromised as a result.Reeder wouldn't estimate how many customers may be affected but said the merchant is notifying customers whose cards it has now determined were used fraudulently. Neiman Marcus, which operates more than 40 upscale stores and clearance stores, is working with the Secret Service on the breach, she said."
  • 0 Hide
    Darkk , January 12, 2014 10:41 PM
    This is going to be a wake up call in getting these credit cards and readers up to snuff. Europe and other parts of the world already been using chipped credit cards to prevent this fraud from happening. Time to pay up and get the infrastructure upgraded.
  • 0 Hide
    tmanXX , January 13, 2014 8:05 AM
    Surprised no one is talking about the Neiman Marcus hack...http://techcrunch.com/2014/01/11/following-attack-on-target-neiman-marcus-confirms-its-own-breach-and-could-be-just-the-tip-of-the-iceberg/Wonder how they have stayed out of the spotlight.