• Welcome to BGO! We know you will have questions as you become familiar with the software. Please take a moment to read our New BGO User Guide which will give you a great start. If you have questions, post them in the Feedback and Tech Support Forum, or feel free to message any available Staff Member.

If you've shopped at Target lately, check your credit card bills

tshile

Guest
Target Confirms Unauthorized Access to Payment Card Data in U.S. Stores | Target Corporate

Target today confirmed it is aware of unauthorized access to payment card data that may have impacted certain guests making credit and debit card purchases in its U.S. stores. Target is working closely with law enforcement and financial institutions, and has identified and resolved the issue.

“Target’s first priority is preserving the trust of our guests and we have moved swiftly to address this issue, so guests can shop with confidence. We regret any inconvenience this may cause,” said Gregg Steinhafel, chairman, president and chief executive officer, Target. “We take this matter very seriously and are working with law enforcement to bring those responsible to justice.”

Approximately 40 million credit and debit card accounts may have been impacted between Nov. 27 and Dec. 15, 2013. Target alerted authorities and financial institutions immediately after it was made aware of the unauthorized access, and is putting all appropriate resources behind these efforts. Among other actions, Target is partnering with a leading third-party forensics firm to conduct a thorough investigation of the incident.

More information is available at Target’s corporate website. Guests who suspect unauthorized activity should contact Target at: 866-852-8680.

Corporate website link: https://corporate.target.com/discover/article/Important-Notice-Unauthorized-access-to-payment-ca

I bought a stupid vacuum from them on black Friday. Yay...
 
My wife bought something from Target last week. I guess I'll be checking my credit card statement everyday for a while.
 
My bank called me on Tuesday and said I needed a new debit card, they were shipping it to me and could I pick it up at the local branch the next day (yesterday)? I did, and was talking with the branch manager yesterday and he told me all about this stuff, pretty scary.
 
Target hackers stole encrypted bank PINs, according to source - chicagotribune.com

Looks like they also stole PIN numbers related to the debit cards. It's encrypted, but they may be able to break it. I would suggest anyone that used a debit card just change your PIN to be on the safe side.

I seriously can't wait to find out how they got in. They claim it was 'sophisticated' but in most cases it was due to incompetence in the IT department, or the department being stripped of authority and someone else over-ruling their policies/decisions.

I know how it sounds to have me describe it that way, but years of following data breaches show that the issue was most likely caused by incompetence and stupidity. If I were a betting man that's just the odds-on-favorite.
 
I read or heard on the news that some are speculating it was an inside job, as the person had to be very familiar with target's system.

Sent from my DROID RAZR using Tapatalk
 
As far as I know this is being investigated by DOJ, FBI, and Secrete Service. I highly doubt any real information about the actual crime has leaked out. Between the types of people investigating and the interest Target would have in keeping quiet on it, I just doubt that's anything other than speculation.

This stuff is surprisingly easy to do. You just have to find one nitwit with access to the network and send him a stupid email. Maybe convince him you're a Nigerian prince trying to escape the country or something.
 
Yah, just speculation. I just thought it was interesting.

Sent from my DROID RAZR using Tapatalk
 
Oh hey, imagine that, a company that had a data breach wasn't up front and honest with us from the start and has finally reached a point where they have to increase the original numbers...

Target is now saying that the breach affects at least/potentially 110 million customers. Almost 3 times original estimates.

They're also saying (and this is important) that it doesn't matter if you purchased items from Target during that periods, it only matters if you've given the store your information at any point. This means if you have a target card, purchased things online, registered for a wedding or baby shower there... Anything that includes giving Target your personal information should be considered to have been compromised in some way.

In addition to debit cards and their pins and credit cards, customer information believed to be compromised now also includes:
Names, Home and email addresses, phone numbers

So check your credit scores too if you've ever shopped at target or have given them your information.

Unbelievable...

One day we'll take IT seriously. One day. I promise. This crap can only go on so long.
 
Last edited by a moderator:
You've warned against using debit cards? Must have missed that, oh well. Most of the time I use my cc to accumulate points anyway...

Sent from my DROID RAZR using Tapatalk
 
A First Look at the Target Intrusion, Malware ? Krebs on Security

boom.

compromised web server led to access to internal network. color me shocked - this style of intrusion represents the vast majority of data breaches:
I seriously can't wait to find out how they got in. They claim it was 'sophisticated' but in most cases it was due to incompetence in the IT department, or the department being stripped of authority and someone else over-ruling their policies/decisions.



there is absolutely no excuse for this sort of breach. a major retailer that collects sensitive information had a public facing web server on its internal network? a major company with its own dedicated IT department? and it was not up to date with the latest security patches?

no excuse. none. majority of their department (meaning leadership and management people) should be fired. that's incompetence at the highest level for this field.

i'm sure they'll all keep their jobs though. they'll talk about how 'hard' it is to deal with this stuff and people that don't know better will accept it and give them a reassuring pat on the back.
 
They arrested two Mexican citizens at the border town of McAllen, TX, using fraudulent credit cards tied to the Target scandal. Keep checking those statements...

http://www.cnbc.com/id/101350532

Sent from my XT1060 using Tapatalk
 
They're now saying this is just the leading edge of a cyber crime-wave, and to expect a lot more. Already two dozen companies have been breached... Yowza. Cash in the mattress time? Lol

Sent from my XT1060 using Tapatalk
 
And mainly because the banks have decided in the US the losses are cheaper than implementing the more secure cards with chips on board.
 
They arrested two Mexican citizens at the border town of McAllen, TX, using fraudulent credit cards tied to the Target scandal. Keep checking those statements...

2 nabbed in Target credit card fraud case

Sent from my XT1060 using Tapatalk

Yeah, you're never safe. I'm probably just going to replace my cards, even if it costs me a couple bucks (pretty sure I can convince them to replace for free in their best interest)

They're now saying this is just the leading edge of a cyber crime-wave, and to expect a lot more. Already two dozen companies have been breached... Yowza. Cash in the mattress time? Lol

Sent from my XT1060 using Tapatalk

We'll see.

IT security (Cyber Security, for example) is a buzz-word field. It's something everyone talks grandly about but many don't actually take seriously.

I'm hoping this will encourage a weeding of the IT sector. I'd say you could probably find cause to fire 50% of the sector with some basic looking into on their work; nothing serious.

These are the people fundamentally causing the problem - the IT people. They often times get to skate by with a pat on the back for their 'hard work' on a 'hard problem'. What they really need is to be fired and to change careers.

This breach screams lazy, sloppy IT work all over it...
 
Yeah, I read an article that said only 11% (?) of companies meet the minimum required security, and even that isn't enough. Definitely lazy IT people, or cheap companies who won't pay for the necessary upgrades.

Sent from my XT1060 using Tapatalk
 
Yeah, I read an article that said only 11% (?) of companies meet the minimum required security, and even that isn't enough. Definitely lazy IT people, or cheap companies who won't pay for the necessary upgrades.

Sent from my XT1060 using Tapatalk

And a government that's more interested in grandstanding than actually doing things beneficial to us.

There's a huge lack of regulation, and where there is regulation it reads like a bunch of idiots that recently graduated Buzzword University wrote it.

The whole field is broken and no one is really trying to fix it.
 

Users Who Are Viewing This Thread (Total: 1, Members: 0, Guests: 1)

Help Users
As we enjoy today's conversations, let's remember our dear friends 'Docsandy', Sandy Zier-Teitler, and 'Posse Lover', Michael Huffman, who would dearly love to be here with us today! We love and miss you guys ❤

You haven't joined any rooms.

    You haven't joined any rooms.
    Top