A security breach that yielded Neiman Marcus customers' payment card information went undetected for nearly six months, according a report in the New York Times.
The upscale department store revealed Friday that hackers may have stolen customers' credit and debit card information during an intrusion it detected in mid-December, but sources told the Times that the earliest time stamp on the breach was from July. During a call with credit card companies on Monday, the company acknowledged that the intrusion had been fully contained only a day earlier, three days after it was publicly revealed, sources told the newspaper.
Neiman … Read more
While Target has said hackers used malware installed on point-of-sale terminals to pilfer the payment card information from millions of customers, the retailer has been silent about how the malware siphoned off the sensitive data.
CEO Gregg Steinhafel confirmed this week that malware installed on checkout keypads was used to steal the names, mailing addresses, phone numbers, and e-mail addresses of as many as 110 million customers. Sources have told Reuters that one of the tools used by the thieves was a memory scraper, which harvests encrypted data as it moves through the computer's memory in plain text.
A … Read more
Tens of thousands of people likely received a conciliatory e-mail from Target on Wednesday. In an effort to temper the repercussions of its massive data breach, the big-box retailer offered to give affected customers one year of free credit monitoring from Experian -- valued at $191.
The security breach, which yielded the personal information of as many as 110 million customers, was first identified on December 15. Apparently, cybercriminals accessed customers' private information at point-of-sale terminals during check-out.
Target said the breach occurred between November 27 and December 15 and resulted in the theft of names, mailing addresses, phone numbers, … Read more
Hackers infected Target's point-of-sale terminals with malware to steal the payment card information from millions of customers, the retailer's chief executive has confirmed.
The security breach, which yielded the personal information of as many as 110 million customers, was first identified on December 15, four days before the breach was publicly revealed, CEO Gregg Steinhafel told CNBC during an interview. Target revealed Friday that the security breach it suffered between November 27 and December 15 was larger than originally believed, yielding the names, mailing addresses, phone numbers, and e-mail addresses for near three times its original estimate of … Read more
Target's data breach is much broader than once believed.
The nationwide retailer on Friday announced that personal information on as many as 70 million additional customers was stolen as part of the company's payment card data breach. The information stolen includes names, mailing addresses, phone numbers, and e-mail addresses, the company said.
While Target spokesperson Molly Snyder said that there could be some overlap with the approximately 40 million people first said to be affected by the breach in December, the new total of people impacted by the breach could be as high as 110 million.
"I … Read more
Maybe the fourth time will be the charm for Sen. Patrick Leahy's data privacy protections standards.
Leahy (D-Vt.) reintroduced his data privacy protection bill to Congress on Wednesday, for the fourth time since 2005. The Personal Data Privacy and Security Act would create a national standard for how businesses would have to notify customers of data breaches, and mandate customer data protection standards for businesses that collect sensitive personal information.
It would also update the Computer Fraud and Abuse Act so that attempted computer hacking and conspiracy to commit computer hacking would be punishable by the same criminal penalties … Read more
A bookie might have given long odds on this one, but here's the tale of Jim Navarde. Or at least the tale he tells.
He says he decided to buy his wife an iPod for Christmas at a San Diego Target store. I wasn't aware people still bought iPods. It seems, though, that they do.
Navarde's wife reportedly didn't appreciate the gift very much, because when she opened the box, she found only erasers and index cards.
Target is again trying to calm customers in the wake of the recent hack that snatched credit card information for as many as 40 million account holders.
A Target spokeswoman revealed on Friday that strongly encrypted credit and debit card PINs were stolen by the hackers. But she said that those personal identification numbers cannot be decrypted without the right key, which could not have been taken during the data breach as the company does not store that information. The PINs are encrypted at the point-of-sale keypad, stay encrypted in the system, and continued to remain encrypted when obtained by … Read more