Galt's Gulch

Target stores' customers hit by major credit card attack

Posted by $ nickursis 12 years, 5 months ago to Business
9 comments | Share | Flag

Anyone shop at Target since Black Friday? May want to check your credit card account...
SOURCE URL: http://news.yahoo.com/target-stores-39-customers-hit-major-credit-card-013358444--sector.html

Add Comment

FORMATTING HELP

All Comments Hide marked as read Mark all as read

  • Posted by Augur 12 years, 5 months ago
    I really hate that this happened to a really great store. Working in IT previously for a bank where I live, we'd always see an uptick in fraud this time of year. Now if the theifs would divert their mental capacities towards business... Good grief what they could accomplish.
    Reply | Mark as read | Best of... | Permalink  
  • Posted by $ MikeMarotta 12 years, 5 months ago
    "In most cases where the transactions are fraudulent, you have no liability. I've had cards "compromised" a couple of times." - BambiB.

    Right, but if all your money is taken via your debit card, life will be inconvenient until you straighten that out.

    Also, pointed noted about the CVV codes: I was surprised, shocked, actually.

    And finally I read that some of the compromised cards have already been duplicated and used.
    Reply | Mark as read | Best of... | Permalink  
    -
  • Posted by $ MikeMarotta 12 years, 5 months ago
    Target confirms major card data theft during Thanksgiving
    Thu Dec 19, 2013 6:52am EST
    Reuters here:
    http://www.reuters.com/article/2013/12/1...

    However "target hacked" returned almost no MSM hits via Google, just some local news outlets.

    You will not know for maybe a year or more if your account is compromised. Typically, the underground economy depends on a division of labor - no surprise - and the people who figure out the attack work with those who get the data who then sell the lists to others who mine them and comb them. They will see if they already have passwords for you from other accounts, for instance. They may find weak websites that accept credit card numbers without requiring the security code on the back and from them, they will buy merchandise with for themselves or for resale.

    You might be better off with four or five low-dollar cards, keeping your best bank card only for direct deposits and not using it for retail transactions.

    Go here and scroll down to "Data Mining is Scary" to read an older post warning about Target's vulnerabilities.
    http://intentionalprivacy.com/

    More can be said about personal security in the Internet Age.
    Reply | Mark as read | Best of... | Permalink  
    • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
    • Posted by BambiB 12 years, 5 months ago
      >> You might be better off with four or five low-dollar cards, keeping your best bank card only for direct deposits and not using it for retail transactions.

      Not sure of the logic here. In most cases where the transactions are fraudulent, you have no liability. I've had cards "compromised" a couple of times. My bank called me to ask if I'd bought a bedroom set -- in Pennsylvania. I'm about 1000 miles away and haven't been to PA in 20 years. They just sent me a new card.

      From the story: The fact that three-digit CVV security codes were compromised shows they were being stored. Storing CVV codes has long been banned by the card brands and the PCI SSC.

      This says, "Strict Liability" for Target to me. Hope it costs them millions.
      Reply | Mark as read | Parent | Best of... | Permalink  
  • Posted by $ nickursis 12 years, 5 months ago
    I guess a bigger question is: how did they do it, was it an inside job, and are these same readers in other places that may not have figured it out yet that they have been hacked?
    Reply | Mark as read | Best of... | Permalink  
    -
  • Posted by $ Mimi 12 years, 5 months ago
    Ouch. I may have. I wasn’t really shopping. I walked-in to make a payment on a card. I paid cash at the service desk. They did swipe my card to access the account, but I don’t know if that opens me up to the same vulnerabilities as someone who is making a point-of-sale swipe. Do you know?
    Reply | Mark as read | Best of... | Permalink  
    • Posted by $ nickursis 12 years, 5 months ago
      The way I read it, it involved the card readers used for purchases, so if they are the same, you may have been, it is hard to say. If it was a Target card, you may not have lost too much, as I am sure they will be doing something real soon. The real issue would be those who swiped MC or Visa cards, and those accounts get loose. MC and Visa are not known for their stupendous security. I just wanted our folks here in the gulch to know, if they didn't find it in our outside world "reliable" news sources. You may be able to call Target, or go see them and ask what up.
      Reply | Mark as read | Parent | Best of... | Permalink  

FORMATTING HELP

  • Comment hidden. Undo