Target Shoppers Credit Card Breach (1 Viewer)

[Franknbeans]

It's like they had a bullseye on them.

 

[PinkydaPimp]

HOW did this hack take place? Not that I expect a blueprint telling me how to do it myself, but I'm skeptical that 40 million accounts were hacked via several thousand registers. My senses tell me this was an inside job.

From what i am reading, someone likely tampered with the machines that swipe your credit cards. It seems a few years back it was found that target was using WEP security for their wireless connections on these machines which is extremely easy to hack. Id imagine they have upgraded since then, but if not, then that would make it very easy to do this.

 

[Mister CIA]

HOW did this hack take place? Not that I expect a blueprint telling me how to do it myself, but I'm skeptical that 40 million accounts were hacked via several thousand registers. My senses tell me this was an inside job.

From what i am reading, someone likely tampered with the machines that swipe your credit cards. It seems a few years back it was found that target was using WEP security for their wireless connections on these machines which is extremely easy to hack. Id imagine they have upgraded since then, but if not, then that would make it very easy to do this.

So perhaps a responsible journalist would ask, "Hey Target, are you using WEP as the protocol of your choice in your stores?" While it kind of irks me were this the case, it irks me 10-fold more that the media is not asking this question.

 

[PinkydaPimp]

HOW did this hack take place? Not that I expect a blueprint telling me how to do it myself, but I'm skeptical that 40 million accounts were hacked via several thousand registers. My senses tell me this was an inside job.

From what i am reading, someone likely tampered with the machines that swipe your credit cards. It seems a few years back it was found that target was using WEP security for their wireless connections on these machines which is extremely easy to hack. Id imagine they have upgraded since then, but if not, then that would make it very easy to do this.

So perhaps a responsible journalist would ask, "Hey Target, are you using WEP as the protocol of your choice in your stores?" While it kind of irks me were this the case, it irks me 10-fold more that the media is not asking this question.

They may be. But typically, a company that has a breach will not reveal the cause until they have done a full internal investigation and confirmed the actual cause. Even then, they sometimes will not reveal what the actual cause was and only give some details. Id be shocked if they are/were still using WEP today but its an example of their lax security posture.

 

[Doctor Detroit]

WHEEL​

​

OF​

​

MISFORTUNE!​

 

[SHIZNITTTT]

My wife had her credit card info stolen from Target. Nightmare trying to contact them. Just cancelled them and said #### it. Waiting for the class action lawsuit papers in the mail. :BOATLOADS: !!!!

meh

 

[simsarge]

My wife had her credit card info stolen from Target. Nightmare trying to contact them. Just cancelled them and said #### it. Waiting for the class action lawsuit papers in the mail. :BOATLOADS: !!!!

meh

yup. you can surely expect your share of the $5M. I'd say about $1.86 in 5 years

 

[bagger]

I have been there a couple times in that span.

It's going to be AMEX's problem not mine if there's an issue so I don't really care.

 

[bagger]

My Chase number got stolen again last week. 3rd time in about a year. It has almost become routine. I just use my amazon card as a backup.

I NEVER use my debit card. I figure that one is tied directly to my credit union, so I don't want to risk the numbers getting skimmed. Credit card companies, just immediately debit your account with no questions.

exactly. I will never use a debit card unless at an ATM.

 

[jhib]

10% off at Target today and tomorrow as an apology to their customers.

 

[Dr Oadi]

So was this a targeted attack?

Walmart behind this no doubt.

 

[ClownCausedChaos2]

awesome!

Wanna picket? You'll have to pick me up. I'm drinking.

 

[Leroy Hoard]

10% off at Target today and tomorrow as an apology to their customers.

My wife had her credit card info stolen from Target. Nightmare trying to contact them. Just cancelled them and said #### it. Waiting for the class action lawsuit papers in the mail. :BOATLOADS: !!!!

meh

yup. you can surely expect your share of the $5M. I'd say about $1.86 in 5 years

and that $1.86 will be paid in the form of coupons.

 

[Otis]

Wife used our Amex there during this period. Jumped online, ordered a new card with free overnight delivery. Not a big deal.

 

[mquinnjr]

10% off at Target today and tomorrow as an apology to their customers.

https://www.youtube.com/watch?v=zo-YVqV0v4Q

 

[Courtjester]

We spent a lot there during that time period--our check card and my wife's Visa. I am not going to shut these down-especially the check card. I will just watch the accounts and see what happens. I will do a 90 day fraud alert at the credit bureaus. I shopped there today and the cashier said that two of the cashiers there had their accounts hacked during this time period. She took $12 off my bill when I mentioned I was concerned about this....

 

[SHIZNITTTT]

Wife used our Amex there during this period. Jumped online, ordered a new card with free overnight delivery. Not a big deal.

No big deal if you didn't get hacked.

 

[Juxtatarot]

We spent a lot there during that time period--our check card and my wife's Visa. I am not going to shut these down-especially the check card. I will just watch the accounts and see what happens. I will do a 90 day fraud alert at the credit bureaus. I shopped there today and the cashier said that two of the cashiers there had their accounts hacked during this time period. She took $12 off my bill when I mentioned I was concerned about this....

Credit bureau fraud alerts are meaningless for situations like this. The concern is using the compromised card info, not creating new fraudulent credit accounts.

 

[East Coast Bias]

USAA said not to worry about it so I won't.

 

[ZenMaster]

Now it seems the hackers got phone numbers, mailing addresses, and email addresses too.

http://online.wsj.com/news/articles/SB10001424052702303754404579312232546392464

The data breach that hit Target Corp. TGT -1.20% over the holidays was bigger than the company had previously said, affecting more systems and compromising a new set of personal information for 70 million people.

Target said Friday that the new set of stolen information included some mix of names, mailing addresses, phone numbers and email addresses. The information was stored separately from the 40 million credit and debit card accounts that the discount chain had previously said were affected, indicating that a different system had been hacked.

The retailer said there was some overlap between the two sets of stolen data but didn't say how extensive it was. The entry point for the attack has been identified and closed, spokeswoman Molly Snyder said.

The new disclosure came just as Target said it was starting to see a recovery from the damage done to sales by the original news of the breach. On Friday, Target cut its profit forecast for its U.S. stores in the quarter ending Feb. 2 by about 20% and said sales excluding newly opened or closed stores would fall 2.5% when it previously had expected sales to be flat.

The company said sales had been stronger than expected until it disclosed the breach on Dec. 19. It said sales were meaningfully weaker after the disclosure, but that they had shown improvement in recent days. The company offered a 10% discount to U.S. shoppers during the last weekend before Christmas in an effort to lure customers back into its stores.

Target said just before Christmas that apparent thieves had broken into its point-of-sale system and stolen credit and debit card data in a hack that went on for two weeks, including the crucial Black Friday weekend after Thanksgiving.

Target, along with the Secret Service, the U.S. Justice Department, and a forensic unit of Verizon Communications Inc.,VZ +0.48% continue to investigate the breach. A number of states are looking into the breach as well. On Friday, New York Attorney General Eric Schneiderman said the new disclosure was "deeply troubling."

The company had said the data breach, which ran from Nov. 27 and Dec. 15, involved malicious software installed in the system where cards are swiped at cash registers. In late December, the company added that encrypted debt card PIN data also was stolen in the breach. Now, it says the breach went beyond that system to one that stored the personal data.

The information about the 70 million customers was accessed during the same time period, but it included data Target had collected for a longer time during the normal course of business, said Ms. Snyder, the spokeswoman. She wouldn't say which other system was affected.

Target said Friday that much of the new set of stolen data is "partial in nature." Emails, addresses and phone numbers are already public or semipublic. Hackers, however, often use email addresses and knowledge of people's interests or connections to craft fake emails to lure the recipients into disclosing sensitive information.

Card customers aren't responsible for unauthorized charges on their accounts.

The retailer hasn't provided any estimate of costs related to the breach, which could include reimbursements to card networks to cover fraud and the cost of issuing new cards, lawsuits and legal costs associated with the various investigations. The costs could significantly hurt the company's results, Target said.

Target also has offered a year of free monitoring and identity theft protection to anyone who shops in its U.S. stores—a number the company puts at 30 million people weekly.

The data breach has crimped Target's efforts to sign up more customers for its in-house credit and debit card, a key part of its strategy to keep customers from defecting to competitors like Amazon.com Inc. AMZN -1.59% Target has told cashiers to stop asking shoppers if they want to sign up for the card, called the RedCard, because it would be "insensitive," spokesman Eric Hausman said. Customers can still ask to sign up for RedCards in store or online.

Target has found that shoppers increase their spending at Target by 50% or more after they sign up for the card. It offers 5% discounts on nearly all purchases and, like Amazon Prime, free shipping on purchases from Target.com.

 

[[icon]]

I heard something about them getting PIN as well?

 

[ZenMaster]

I heard something about them getting PIN as well?

Looks like it:

The company had said the data breach, which ran from Nov. 27 and Dec. 15, involved malicious software installed in the system where cards are swiped at cash registers. In late December, the company added that encrypted debt card PIN data also was stolen in the breach. Now, it says the breach went beyond that system to one that stored the personal data.

 

[Statorama]

So was this a targeted attack?

Walmart behind this no doubt.

Sounds like the start of a movie plot outline.

 

[pollardsvision]

It's what I get for finally going to that terrible place for the first time in a long time.

Target is for people cheap enough to want to buy crappy China made garbage, but think they are too good to do it next to Wal-Mart shoppers.

 

[Fennis]

It's what I get for finally going to that terrible place for the first time in a long time.

Target is for people cheap enough to want to buy crappy China made garbage, but think they are too good to do it next to Wal-Mart shoppers.

to be fair, you summed up almost exactly why I shop at Target

 

[KCitons]

It's what I get for finally going to that terrible place for the first time in a long time.

Target is for people cheap enough to want to buy crappy China made garbage, but think they are too good to do it next to Wal-Mart shoppers.

What's the alternative? If I don't go to Target, or Walmart.

 

[MaxThreshold]

It's what I get for finally going to that terrible place for the first time in a long time.

Target is for people cheap enough to want to buy crappy China made garbage, but think they are too good to do it next to Wal-Mart shoppers.

What's the alternative? If I don't go to Target, or Walmart.

Yeah, good question. Can't wait to hear the answer from Mr. I'mBetterThanEveryoneElse.

 

[pollardsvision]

It's what I get for finally going to that terrible place for the first time in a long time.

Target is for people cheap enough to want to buy crappy China made garbage, but think they are too good to do it next to Wal-Mart shoppers.

What's the alternative? If I don't go to Target, or Walmart.

Yeah, good question. Can't wait to hear the answer from Mr. I'mBetterThanEveryoneElse.

I'm the guy saying I prefer Wal-Mart over Target.

Mostly, I'm just saying there's no reason to get all highfalutin when buying cheap consumer goods.

 

[KCitons]

OK, I get what you're saying now. I thought you had a secret place to shop where your credit card info isn't stolen, and people don't fight in their pj's on black friday.

 

[Apple Jack]

Will my bank refund me if something happens prior to getting a new card? Yes? Then wgaf.

ETA: Mostly I avoid Wal-Mart because I always end up with a cart with a busted wheel and the social experience tends to leave me depressed. Though there's one near where I sometimes play tennis, so I do run in to buy tennis balls from time to time.

 

[Nathan R. Jessep]

I've shopped at Target with a CC, but my info was not compromised thank goodness. Got this mass email today:

Dear Target Guest,

As you may have heard or read, Target learned in mid-December that criminals forced their way into our systems and took guest information, including debit and credit card data. Late last week, as part of our ongoing investigation, we learned that additional information, including name, mailing address, phone number or email address, was also taken. I am writing to make you aware that your name, mailing address, phone number or email address may have been taken during the intrusion.

I am truly sorry this incident occurred and sincerely regret any inconvenience it may cause you. Because we value you as a guest and your trust is important to us, Target is offering one year of free credit monitoring to all Target guests who shopped in U.S. stores, through Experian’s® ProtectMyID® product which includes identity theft insurance where available. To receive your unique activation code for this service, please go to creditmonitoring.target.com and register before April 23, 2014. Activation codes must be redeemed by April 30, 2014.

In addition, to guard against possible scams, always be cautious about sharing personal information, such as Social Security numbers, passwords, user IDs and financial account information. Here are some tips that will help protect you:

• Never share information with anyone over the phone, email or text, even if they claim to be someone you know or do business with. Instead, ask for a call-back number.
• Delete texts immediately from numbers or names you don’t recognize.
• Be wary of emails that ask for money or send you to suspicious websites. Don’t click links within emails you don’t recognize.

Target’s email communication regarding this incident will never ask you to provide personal or sensitive information.

Thank you for your patience and loyalty to Target. You can find additional information and FAQs about this incident at our Target.com/databreach website. If you have further questions, you may call us at 866-852-8680.

Gregg Steinhafel

Chairman, President and CEO

 

[[icon]]

I like free stuff. in.

 

[Nathan R. Jessep]

I like free stuff. in.

you get a free credit report in the deal also

 

[3C's]

I like free stuff. in.

Exactly. Didn't shop at Target during the breech but I'll take the freebie.

 

[BlueDredSo]

I'd be careful with that free credit monitoring. When I requested my credit report from Experian I had a $20 charge on my credit card for a monitoring subscription. Never realized I signed up for that because it was probably in very small print at the bottom of the agreement or whatever. Anyway, it was a major pain in the ### to cancel it. I didn't want to pay for anything, but ended up paying for just that month because they had proof I "signed up for it".

*this was over a year ago, nothing to do with the Target hack, but I did use Experian

 

[culdeus]

I like free stuff. in.

you get a free credit report in the deal also

I don't see that anywhere. What am I missing?

 

[mquinnjr]

I like free stuff. in.

you get a free credit report in the deal also

I don't see that anywhere. What am I missing?

If you go to the link Col. Jessup posted, you just type in your name and email address, and it confirms that you'll receive an activation code within 72 hours.

I just did it, also in for free stuff. Thanks guys

 

[Nathan R. Jessep]

I like free stuff. in.

you get a free credit report in the deal also

I don't see that anywhere. What am I missing?

sorry, it mentions it in the FAQ here

 

[KCitons]

Wells Fargo sent us new credit cards today. Didn't even have to order them. Included letter states that they are just being proactive since our card info may have been compromised.

 

[Patriotsfatboy1]

My AMEX was compromised after I shopped for some crap for the Mrs. at Target. The crooks tried to buy a couple of $420 items from....

.... Walmart.

Had the card swapped out the next day and did not miss a beat in spending during the holidays. F-Target.

 

[Mario Kart]

Wells Fargo sent us new credit cards today. Didn't even have to order them. Included letter states that they are just being proactive since our card info may have been compromised.

My VISA card is getting replaced. I don't realize it but I have to sync up that card to Amazon, bank statements, iTunes and some other places. Might be a headache.

 

[KCitons]

Wells Fargo sent us new credit cards today. Didn't even have to order them. Included letter states that they are just being proactive since our card info may have been compromised.

My VISA card is getting replaced. I don't realize it but I have to sync up that card to Amazon, bank statements, iTunes and some other places. Might be a headache.

The new one I received is the same number on the front. The security code is different. Most of my online stuff requires me to enter the code at checkout. Otherwise everything else is the same.

 

[Mario Kart]

Wells Fargo sent us new credit cards today. Didn't even have to order them. Included letter states that they are just being proactive since our card info may have been compromised.

My VISA card is getting replaced. I don't realize it but I have to sync up that card to Amazon, bank statements, iTunes and some other places. Might be a headache.

The new one I received is the same number on the front. The security code is different. Most of my online stuff requires me to enter the code at checkout. Otherwise everything else is the same.

Yeah, I'm just saying my Amazon account, iTunes and some other sites have my card in there already. So, next time I purchase, I will have to delete and redo. No biggie overall as long as I'm secure. I haven't found any unauthorized purchases yet.

 

[Mario Kart]

Wells Fargo sent us new credit cards today. Didn't even have to order them. Included letter states that they are just being proactive since our card info may have been compromised.

My VISA card is getting replaced. I don't realize it but I have to sync up that card to Amazon, bank statements, iTunes and some other places. Might be a headache.

The new one I received is the same number on the front. The security code is different. Most of my online stuff requires me to enter the code at checkout. Otherwise everything else is the same.

Got my new one today. New number and everything.

 

[KCitons]

Wells Fargo sent us new credit cards today. Didn't even have to order them. Included letter states that they are just being proactive since our card info may have been compromised.

My VISA card is getting replaced. I don't realize it but I have to sync up that card to Amazon, bank statements, iTunes and some other places. Might be a headache.

The new one I received is the same number on the front. The security code is different. Most of my online stuff requires me to enter the code at checkout. Otherwise everything else is the same.

Got my new one today. New number and everything.

What are the numbers?

 

[Mario Kart]

Wells Fargo sent us new credit cards today. Didn't even have to order them. Included letter states that they are just being proactive since our card info may have been compromised.

My VISA card is getting replaced. I don't realize it but I have to sync up that card to Amazon, bank statements, iTunes and some other places. Might be a headache.

The new one I received is the same number on the front. The security code is different. Most of my online stuff requires me to enter the code at checkout. Otherwise everything else is the same.

Got my new one today. New number and everything.

What are the numbers?

# = 1234 5678 9101112 13141516

sec code = 411

 

[KCitons]

I'm buyin' a jet ski.

 

[tri-man 47]

Wells Fargo sent us new credit cards today. Didn't even have to order them. Included letter states that they are just being proactive since our card info may have been compromised.

My VISA card is getting replaced. I don't realize it but I have to sync up that card to Amazon, bank statements, iTunes and some other places. Might be a headache.

The new one I received is the same number on the front. The security code is different. Most of my online stuff requires me to enter the code at checkout. Otherwise everything else is the same.

Got my new one today. New number and everything.

What are the numbers?

# = 1234 5678 9101112 13141516

sec code = 411

Hey, isn't your mom Kathryn Kart? Kathryn Smith before she was married, right?

 

[Mario Kart]

Hey, isn't your mom Kathryn Kart? Kathryn Smith before she was married, right?

Do I know you? Are you one of the boys she fondled back in the day? She's serving 10 years for that, *******.