If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(Chicago Trib)   Credit card hackers find an easy Target   (chicagotribune.com) divider line 38
    More: Fail, Target Corp., Target, credit cards, TJX Cos, issuing bank, swipe card, payment card, T.J. Maxx  
•       •       •

1157 clicks; posted to Business » on 19 Dec 2013 at 3:13 AM (1 year ago)   |  Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



38 Comments   (+0 »)
   
View Voting Results: Smartest and Funniest
 
2013-12-19 12:50:48 AM  
"The report said that "track data" from at least 1 million payment cards was thought to have been stolen before Target uncovered the operation, but that the number could be significantly higher."


As dad used to say, if you can't afford to pay cash, you can't afford it.
 
2013-12-19 02:57:35 AM  
This sounds like a very big deal. The initial report said every person who used a cc at any Target between Thanksgiving and 12/15 was at risk.
 
2013-12-19 03:33:17 AM  
img.fark.netHey Target. Miss me yet.
 
2013-12-19 04:33:45 AM  

Triumph: This sounds like a very big deal. The initial report said every person who used a cc at any Target between Thanksgiving and 12/15 was at risk.


That sucks. I wasn't a black Friday shopper, but I did go there during that time.
 
2013-12-19 04:38:37 AM  
Damn. Gotta wonder if they had an inside man that helped them plant the software to pull this off.
 
2013-12-19 04:42:23 AM  

grimlock1972: Damn. Gotta wonder if they had an inside man that helped them plant the software to pull this off.


What, like in Superman III?
 
2013-12-19 05:33:44 AM  
nah man Richard Pryor is dead,.
 
2013-12-19 07:11:51 AM  

Principal Clarinet: As dad used to say, if you can't afford to pay cash, you can't afford it.


The hackers took debit card information too.
 
2013-12-19 07:17:41 AM  
Autoplay videos make me add sites to the /dev/null pile.
 
2013-12-19 07:50:44 AM  

Principal Clarinet: "The report said that "track data" from at least 1 million payment cards was thought to have been stolen before Target uncovered the operation, but that the number could be significantly higher."


As dad used to say, if you can't afford to pay cash, you can't afford it.


I'm sure your daddy plopped down straight cash to buy cars and houses too.


/where's that Carlin "my daddy" clip when you need it.
 
2013-12-19 08:05:25 AM  

labman: Triumph: This sounds like a very big deal. The initial report said every person who used a cc at any Target between Thanksgiving and 12/15 was at risk.

That sucks. I wasn't a black Friday shopper, but I did go there during that time.


Same. =(
 
2013-12-19 08:10:15 AM  

Dinobot: labman: Triumph: This sounds like a very big deal. The initial report said every person who used a cc at any Target between Thanksgiving and 12/15 was at risk.

That sucks. I wasn't a black Friday shopper, but I did go there during that time.

Same. =(


Me too.
 
2013-12-19 08:24:54 AM  
On the Target website they say they have "has identified and resolved" the issue.

Well maybe for them but not for the 40million+ people that have had their information stolen.

Target, you use that word "resolved". I don't think it means what you think it means.
 
2013-12-19 08:43:55 AM  
Target might be pretty well farked. According to a 2013 Symantec study, average cost of each compromised credit card is $188 -- works out to around $7.5B in potential penalties and re-issuing fees.

As a Level 1 merchant, Target's required to be PCI compliant. Compliance only spares you of payment card industry penalties if they determine you were still compliant at the time of the breach. Doesn't seem likely in this case. Even if they were, they're still on the hook for card re-issuing fees.
 
2013-12-19 08:49:05 AM  
looks like the thieves really *puts on sunglasses* hit the bulls-eye this time


/YEAAAAAAAAAAHHHHHHHHH!
 
2013-12-19 08:55:57 AM  
FTA: The company said it hired a forensics firm to investigate the incident.

Target runs one of the most sophisticated forensics labs in the country. They must really be worried about an inside job if they are hiring a different firm.

I was hoping it was just about the Target cards. Unfortunately, living a couple of blocks from a Target means that we were definitely effected by this.
 
2013-12-19 08:59:10 AM  
I heard as many as 40 million cards may have been compromised.
 
2013-12-19 09:04:12 AM  

GameSprocket: FTA: The company said it hired a forensics firm to investigate the incident.

Target runs one of the most sophisticated forensics labs in the country. They must really be worried about an inside job if they are hiring a different firm.


Absolutely. Several former colleagues of mine have gone to Target in information security and internal audit positions. They take security and risk management very seriously -- definitely a worrisome event.
 
2013-12-19 09:15:48 AM  

Principal Clarinet: As dad used to say, if you can't afford to pay cash, you can't afford it.


Your daddy sucked at racking up Amex points.
 
2013-12-19 09:20:12 AM  
The part-timer that works for me got hit already by this.  A new laptop and limo charges.
 
2013-12-19 09:30:12 AM  

monoski: I heard as many as 40 million cards may have been compromised.


I heard that, too.

When I read the article.
 
2013-12-19 10:17:28 AM  

monoski: I heard as many as 40 million cards may have been compromised.


That's as many as four 10s.
 
2013-12-19 10:34:07 AM  
How many card?
 I heard 40 million.
 
2013-12-19 10:37:42 AM  

NeverDrunk23: monoski: I heard as many as 40 million cards may have been compromised.

That's as many as four 10s.


That's like 911 times .0439!
 
2013-12-19 10:41:02 AM  

Principal Clarinet: "The report said that "track data" from at least 1 million payment cards was thought to have been stolen before Target uncovered the operation, but that the number could be significantly higher."


As dad used to say, if you can't afford to pay cash, you can't afford it.


Your daddy didn't get $600 in cash back at the end of the year like I do.

Sign up for a rewards card, run EVERYTHING through, pay off the balance every month, and then profit.
 
2013-12-19 10:46:45 AM  

joshiz: On the Target website they say they have "has identified and resolved" the issue.

Well maybe for them but not for the 40million+ people that have had their information stolen.

Target, you use that word "resolved". I don't think it means what you think it means.


Easy enough to fix with a quick call to your credit card company. Request a new number, and then get a new card sent out. Any charges that show up on the card are challenged. It's not something I LIKE to do, but takes about an hour to fix everything, and that's only if you have a half dozen places you have to change your CC info because of the change.
 
2013-12-19 10:48:33 AM  

GameSprocket


FTA: The company said it hired a forensics firm to investigate the incident.

Target runs one of the most sophisticated forensics labs in the country. They must really be worried about an inside job if they are hiring a different firm.


Not necessarily. They could have the best internal team in the world and the results would still be suspect because there would be presumption of bias. This is why companies hire [ostensibly] neutral third-party assessors and auditors for this kind of work.

That, and the PCI DSS requires (or used to require - not sure if still does) the use of an external forensic organization after a breach of cardholder data.
 
2013-12-19 10:57:21 AM  

Mad_Radhu: Principal Clarinet: "The report said that "track data" from at least 1 million payment cards was thought to have been stolen before Target uncovered the operation, but that the number could be significantly higher."


As dad used to say, if you can't afford to pay cash, you can't afford it.

Your daddy didn't get $600 in cash back at the end of the year like I do.

Sign up for a rewards card, run EVERYTHING through, pay off the balance every month, and then profit.


Yep, exactly. I don't quite understand the mentality of not using credit cards. As long as you're paying it off every month or using various credit deals, what's the problem?

It's more of a risk carrying around a wad of cash than using a credit card. I paid for my wife's engagement ring with cash. The walk between the bank and the jewelry store is only a few hundred yards, but that walk felt like miles with $3000 in my pocket. Would've been smarter to just charge it, get the points, and immediately pay it off.
 
2013-12-19 11:37:55 AM  

bearcats1983: Mad_Radhu: Principal Clarinet: "The report said that "track data" from at least 1 million payment cards was thought to have been stolen before Target uncovered the operation, but that the number could be significantly higher."


As dad used to say, if you can't afford to pay cash, you can't afford it.

Your daddy didn't get $600 in cash back at the end of the year like I do.

Sign up for a rewards card, run EVERYTHING through, pay off the balance every month, and then profit.

Yep, exactly. I don't quite understand the mentality of not using credit cards. As long as you're paying it off every month or using various credit deals, what's the problem?

It's more of a risk carrying around a wad of cash than using a credit card. I paid for my wife's engagement ring with cash. The walk between the bank and the jewelry store is only a few hundred yards, but that walk felt like miles with $3000 in my pocket. Would've been smarter to just charge it, get the points, and immediately pay it off.


I don't get it either, I enjoy the benefit of rarely using raw cash and everything else is going through a protected system (as in if something goes wrong I can call up the credit card company and they'll sort that merchant out).  I also love barely having to pay for groceries (that's what my rewards translates to).  I also enjoy the much more straight forward process of ordering crap online or over the phone vs the alternatives.  Got a few friends that don't use their credit cards for anything or in some cases purposely avoid owning one:  Usually it comes down to they don't trust themselves to line up credit vs income appropriately and need a single total that dictates their spending habits.

In other words:  They ain't good at the maths and prefer to live like neanderthals then learn how to get better at the maths.  They are also usually the sorts of friends that live paycheck to paycheck regardless of good or bad income.

/They are also the ones that hit you up for money once in a while...yet they can't do credit....oh irony...
 
2013-12-19 11:46:44 AM  

bearcats1983: Yep, exactly. I don't quite understand the mentality of not using credit cards. As long as you're paying it off every month or using various credit deals, what's the problem?


It results in higher prices overall, since the card issuers are charging merchants a percentage of every transaction. With everyone using cash you might pay $100 for something which cost $90 to produce. You get the item and the merchant makes $10. But if you buy that same item with a rewards card the profit is going to be split as something like $7.50 to the merchant, $2 to the card company, and $0.50 back to you. If everyone is using credit cards then the merchant has to either accept a 25% smaller profit per item or increase his prices to compensate.

I don't know about the US, but in Canada the debit card fees are much less than credit cards (an average of 12 cents per transaction), so they are a good alternative to carrying around a literal wad of cash.
 
2013-12-19 02:52:18 PM  

Englebert Slaptyback: GameSprocket

FTA: The company said it hired a forensics firm to investigate the incident.

Target runs one of the most sophisticated forensics labs in the country. They must really be worried about an inside job if they are hiring a different firm.


Not necessarily. They could have the best internal team in the world and the results would still be suspect because there would be presumption of bias. This is why companies hire [ostensibly] neutral third-party assessors and auditors for this kind of work.

That, and the PCI DSS requires (or used to require - not sure if still does) the use of an external forensic organization after a breach of cardholder data.


Still does, you have to bring in a PFI (PCI Forensic Investigator) for any breach.  There are currently only 21 of them, though for large breaches it's not unheard of for 2 or more to be called in.
 
2013-12-19 03:38:57 PM  
I called my company I used my card on the 14th there. Nothing seems odd the last charge was on that saturday. They know to look out for anything crazy now.
 
2013-12-19 04:59:09 PM  
Eh... anytime my CC is used, I immediately get an alert stating the place/vendor and the amount it was charged for (though there is sometimes a delay if the company the vendor uses doesn't run the actual charge for a couple days, like some gas stations). Not sweating it too much until I start getting some I didn't authorize.

You guys should see if your CC provider has that, it's a pretty sweet feature.
 
2013-12-19 05:07:23 PM  

RoxtarRyan: Eh... anytime my CC is used, I immediately get an alert stating the place/vendor and the amount it was charged for (though there is sometimes a delay if the company the vendor uses doesn't run the actual charge for a couple days, like some gas stations). Not sweating it too much until I start getting some I didn't authorize.

You guys should see if your CC provider has that, it's a pretty sweet feature.


What kind of alert?  I'd rather not have my phone ratting me out "DEAR BUMPINTHENIGHT YOUR ORDER FOR BIG BUSTY HERMAPHRODITES PART ELEVEN - THE LOAD BEARER WAS SUCCESSFUL!  THANK YOU FOR SHOPPING AT SMUTMONGER.CX!"

I mean that could easily ruin christmas, gotta keep these things a surprise.
 
2013-12-19 05:13:17 PM  

BumpInTheNight: RoxtarRyan: Eh... anytime my CC is used, I immediately get an alert stating the place/vendor and the amount it was charged for (though there is sometimes a delay if the company the vendor uses doesn't run the actual charge for a couple days, like some gas stations). Not sweating it too much until I start getting some I didn't authorize.

You guys should see if your CC provider has that, it's a pretty sweet feature.

What kind of alert?  I'd rather not have my phone ratting me out "DEAR BUMPINTHENIGHT YOUR ORDER FOR BIG BUSTY HERMAPHRODITES PART ELEVEN - THE LOAD BEARER WAS SUCCESSFUL!  THANK YOU FOR SHOPPING AT SMUTMONGER.CX!"

I mean that could easily ruin christmas, gotta keep these things a surprise.


I recommend getting your smut from a reputable smut dealer, who uses a discreet CC vendor that instead says you bought a handful of pleasant flowers and chocolate candies.
 
2013-12-19 08:07:30 PM  
This crap is driving me nuts. I work in the field of banking technology. Yes we designed your banking core processor mr. bank vice president, including your debit card software, no, its not our fault that a retail chain was compromised.

Slutter McGee
 
2013-12-20 01:13:14 AM  

BumpInTheNight: RoxtarRyan: Eh... anytime my CC is used, I immediately get an alert stating the place/vendor and the amount it was charged for (though there is sometimes a delay if the company the vendor uses doesn't run the actual charge for a couple days, like some gas stations). Not sweating it too much until I start getting some I didn't authorize.

You guys should see if your CC provider has that, it's a pretty sweet feature.

What kind of alert?  I'd rather not have my phone ratting me out "DEAR BUMPINTHENIGHT YOUR ORDER FOR BIG BUSTY HERMAPHRODITES PART ELEVEN - THE LOAD BEARER WAS SUCCESSFUL!  THANK YOU FOR SHOPPING AT SMUTMONGER.CX!"

I mean that could easily ruin christmas, gotta keep these things a surprise.


It varies by provider, but I know that with American Express you can have them send you an e-mail or text message any time there's a charge over a certain threshold.  And with the newest version of their smartphone apps, they could probably push those notifications to the app as well, although I haven't yet looked into that.
 
2013-12-20 04:38:35 AM  

Ivo Shandor: bearcats1983: Yep, exactly. I don't quite understand the mentality of not using credit cards. As long as you're paying it off every month or using various credit deals, what's the problem?

It results in higher prices overall, since the card issuers are charging merchants a percentage of every transaction. With everyone using cash you might pay $100 for something which cost $90 to produce. You get the item and the merchant makes $10. But if you buy that same item with a rewards card the profit is going to be split as something like $7.50 to the merchant, $2 to the card company, and $0.50 back to you. If everyone is using credit cards then the merchant has to either accept a 25% smaller profit per item or increase his prices to compensate.

I don't know about the US, but in Canada the debit card fees are much less than credit cards (an average of 12 cents per transaction), so they are a good alternative to carrying around a literal wad of cash.


For a large company doing a large number of transactions, the fees are generally a very small percentage of the item cost because pleas like Wal-Mart and Amazon negotiate really good deals with their processors, and for a physical retailer it is generally less than the loss incurred from cash handling. For a smaller merchant, they can use a system like Square, which charges 2.75% per swipe, which isn't bad if it increases your customer base by at east 3% because they can pay more easily.
 
Displayed 38 of 38 comments

View Voting Results: Smartest and Funniest


This thread is closed to new comments.

Continue Farking
Submit a Link »
On Twitter





In Other Media


  1. Links are submitted by members of the Fark community.

  2. When community members submit a link, they also write a custom headline for the story.

  3. Other Farkers comment on the links. This is the number of comments. Click here to read them.

  4. Click here to submit a link.

Report