If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(The New York Times)   Target: Did we say 70 million victims? We meant 110 million   (nytimes.com) divider line 112
    More: Followup, Target, Gregg Steinhafel  
•       •       •

7754 clicks; posted to Main » on 10 Jan 2014 at 3:21 PM (28 weeks ago)   |  Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



112 Comments   (+0 »)
   
View Voting Results: Smartest and Funniest
 
2014-01-10 02:46:39 PM
Look at your credit scores!!!
You're getting hacxored.
You're all getting hxxred!

Next on Oprah.
 
2014-01-10 02:47:05 PM
Okay okay okay. We really meant to say, "anyone that has ever shopped at Target in the past five years with a credit or debit card."
 
2014-01-10 02:49:21 PM
What about Jenny?

Yes, Dave, even Jenny.  Everyone's information has been compromised.  All of it has been stolen, Dave.
upload.wikimedia.org
 
2014-01-10 03:22:23 PM
At some point, it will be ALL the credit card numbers.

ALL the credit card numbers are stolen.
 
2014-01-10 03:24:00 PM
This deal keeps getting worse all the time.
 
2014-01-10 03:24:18 PM

vonmatrices: At some point, it will be ALL the credit card numbers.

ALL the credit card numbers are stolen.


0000 0000 0000 0001
0000 0000 0000 0002
0000 0000 0000 0003
0000 0000 0000 0004
0000 0000 0000 0005
0000 0000 0000 0006

 
2014-01-10 03:24:37 PM

Lando Lincoln: Okay okay okay. We really meant to say, "anyone that has ever shopped at Target in the past five years with a credit or debit card."


Yep.  Including all the rabbits.  This incident at Target has led to some cross hares.

Ha!  Target.  Cross Hares.

/Why yes, I am off my meds, why do you ask?
 
2014-01-10 03:25:19 PM

stampylives: 0000 0000 0000 0005


Hey Modmins, can you ban this jerk for posting my personal information online?
 
Bf+
2014-01-10 03:25:24 PM

stampylives: vonmatrices: At some point, it will be ALL the credit card numbers.

ALL the credit card numbers are stolen.

0000 0000 0000 0001
0000 0000 0000 0002
0000 0000 0000 0003
0000 0000 0000 0004
0000 0000 0000 0005
0000 0000 0000 0006


drupal.org
 
2014-01-10 03:25:29 PM
Wow. I wish it had been Wall Mart. I never shop there.
 
2014-01-10 03:25:43 PM
I've been watching for fraudulent charges, and I was never part of the fiasco. I was more worried about a global level, which is supposedly true...
 
2014-01-10 03:26:08 PM
Ok this is getting silly. there are only 300 million people in the USA. That includes infants and people who don't even know what Target is. Are you saying 1 in 3 Americans visited Target during this short time period?
 
2014-01-10 03:27:16 PM
Thank god I got a new credit card between now and the last time I shopped at Target.  The old one got lost, so I canceled it.  Look whose carelessness is paying off!
 
2014-01-10 03:27:28 PM
I have a hard time believing that 1 in every 3 people in the country shopped at target...   These numbers must be the result of people using multiple cards.
 
2014-01-10 03:27:29 PM
My gosh, I can actualy see the torrent of heads rolling down Nicollet Mall from the Target HQ right now.
 
2014-01-10 03:27:37 PM
i.imgur.com
 
2014-01-10 03:27:39 PM
www.carlsontoons.com
 
2014-01-10 03:27:54 PM
The company now says that other kinds of information were taken, including mailing and email addresses, phone numbers and names.

Someone got into the loyalty program.  My email address isn't on my Amex stripe.
 
2014-01-10 03:28:09 PM
...the latest subset of potential victims includes customers who may not have shopped at Target during the holiday period


Okay, so what would be the relevant time period, then?
 
2014-01-10 03:28:19 PM
The other, other shoe has dropped!

drawception.com
 
2014-01-10 03:28:57 PM
They may want to chang their name.
 
2014-01-10 03:29:04 PM

stampylives: vonmatrices: At some point, it will be ALL the credit card numbers.

ALL the credit card numbers are stolen.

0000 0000 0000 0001
0000 0000 0000 0002
0000 0000 0000 0003
0000 0000 0000 0004
0000 0000 0000 0005
0000 0000 0000 0006



Woohoo, 7 is still safe!
 
2014-01-10 03:29:11 PM

stampylives: vonmatrices: At some point, it will be ALL the credit card numbers.

ALL the credit card numbers are stolen.

0000 0000 0000 0002


Damn Teddy Roosevelt...
 
2014-01-10 03:29:48 PM

Walker: Ok this is getting silly. there are only 300 million people in the USA. That includes infants and people who don't even know what Target is. Are you saying 1 in 3 Americans visited Target during this short time period?


I'm having a hard time believing that as well. It's sounding like the breach encompasses a period of time much longer than that two week window initially reported.
 
2014-01-10 03:30:02 PM

Walker: Ok this is getting silly. there are only 300 million people in the USA. That includes infants and people who don't even know what Target is. Are you saying 1 in 3 Americans visited Target during this short time period?


This is a different set of data "including mailing and email addresses, phone numbers and names" according to TFA.  It's likely a superset of the 40 million credit cards already leaked.
 
2014-01-10 03:31:04 PM

tricycleracer: The company now says that other kinds of information were taken, including mailing and email addresses, phone numbers and names.

Someone got into the loyalty program.  My email address isn't on my Amex stripe.


It also sounds like Target linked the loyalty and payments systems. If 'twere so, 'twere a grievous fault.
 
2014-01-10 03:31:30 PM

Walker: Ok this is getting silly. there are only 300 million people in the USA. That includes infants and people who don't even know what Target is. Are you saying 1 in 3 Americans visited Target during this short time period?


I think there's a lot of double counting going on.  They're almost certainly assuming each card counts as a separate person and maybe even each transaction is a different person.
 
2014-01-10 03:32:17 PM
My wife's card information (obviously) was stolen, but when she asked her credit union about it she said the thieves hadn't used it.

Didn't send her a new card.

/Is that insane?
//or what?
 
2014-01-10 03:32:53 PM

A Message from the NSA


Yes, we have all of your personal information. Everything. But you don't have to worry about this if you aren't doing any thing wrong.

P.S. This is Edward Snowdon. Don't you believe it!

P.P.S. This is the Haxors. We have all of your personal information, too. Edward Snowdon is a bleeding heart liberal. He can bite our shiney metal asses. (Our asses are shiney metal because we can afford to wear pants made of cloth of gold. Booboizee prefers to wear pants made of Platinum, but then she's one of those LOTR nerds and she likes to pretend it is oricalchum or whatever they call that stuff that elves and dwarves wear.)

P.P.P.S. Ha! Hackers! We Illuminati had all of your personal data thousands of years before you were born! Only queers wear cloth of gold. The real conspirators wear invisible cloaks.

PPPPS from a ten year old boy:  Ha! ha! The Emperor has no clothes!
 
2014-01-10 03:32:57 PM
We meant "everyone who has been alive during the last 200 years, and 100 years into the future, in every parallel universe, and also the beasts of the fields, the birds of the sky, and GOD HIMSELF."
 
2014-01-10 03:37:46 PM

yakmans_dad: My wife's card information (obviously) was stolen, but when she asked her credit union about it she said the thieves hadn't used it.

Didn't send her a new card.

/Is that insane?
//or what?


I called the bank I use for my Visa because I felt my card had been compromised.  They said they'd send me a new card.  I called back to find they hadn't cancelled the card.  I asked again, and was told that cancelling the card can take up to 60 days and that if there were any fraudulent transactions, I could just contest them.

They no longer have my business.

Yes, in retrospect I could have reported it stolen, but I went on the misguided assumption that when I asked for it to be cancelled and they said it would be cancelled that it would be, in fact, cancelled.
 
2014-01-10 03:38:04 PM
The last time I paid close attention to this issue, it sounded like the POS card swiping devices may have been compromised.  Within the brick and mortar stores, which suggested an inside job.  But still no clues?

Probably aliens.  Not saying it was "space aliens," but I wouldn't rule that out, just yet.
 
2014-01-10 03:38:22 PM
Is it time to panic yet?

Hell, my credit is so shiatty someone stealing my identity might actually improve it. If you use plastic, you'll get hacked; if you take cash, someone will rob you. I think the lesson here is: never go anywhere and never buy anything.
 
2014-01-10 03:38:33 PM
I lost my damn credit card recently and now all of my online accounts are nagging me for a new number.

I think I will get another credit card and use it only for online purchases and pre-payments. That way I will never lose it because it will never leave my secret hidey-hole.

One card for home shopping and another for brick and mortar store purchases. I don't see a downside.
 
2014-01-10 03:39:47 PM

12349876: Walker: Ok this is getting silly. there are only 300 million people in the USA. That includes infants and people who don't even know what Target is. Are you saying 1 in 3 Americans visited Target during this short time period?

I think there's a lot of double counting going on.  They're almost certainly assuming each card counts as a separate person and maybe even each transaction is a different person.


I'm sure that's the case.  In the data industry, multiple individuals at an address would count as different records.  Plus, if it's transactional data, then each transaction could potentially be viewed as a record, but the stories have read more like duplicate individuals as opposed to a total number of individual transactions compromised.
 
2014-01-10 03:42:24 PM
Maybe someone will steal my identity and fix my bad credit score first, before they try and use my new great credit score they made for me.
 
2014-01-10 03:42:59 PM
remember when we said 40 million and when we said 70 million?  what we meant was 40 million + 70 million.
 
2014-01-10 03:44:24 PM

mainsail: Wow. I wish it had been Wal

l Mart. I never shop there.

not many people have.  not many people have.
 
2014-01-10 03:47:18 PM

yakmans_dad: My wife's card information (obviously) was stolen, but when she asked her credit union about it she said the thieves hadn't used it.

Didn't send her a new card.

/Is that insane?
//or what?


She needs to demand it.

My bank (Chase) went ahead and sent out new cards to both me and my wife unsolicited.
 
2014-01-10 03:47:21 PM
gallery.drfaulken.com
 
2014-01-10 03:48:19 PM
Everybody with a credit card throw it into a shredder and get a new one issued. Time to start all over.
 
2014-01-10 03:48:45 PM

stampylives: vonmatrices: At some point, it will be ALL the credit card numbers.

ALL the credit card numbers are stolen.

0000 0000 0000 0001
0000 0000 0000 0002
0000 0000 0000 0003
0000 0000 0000 0004
0000 0000 0000 0005
0000 0000 0000 0006


These fail the Luhn check... 0000 0000 0000 0000 however....
 
2014-01-10 03:50:09 PM
And meanwhile, I'm still here waiting for the USPS to deliver my replacement card which is about a week overdue. Apparently, travel across the country in the middle of a winter storm is enough to make the USPS lose things for several days.

What pisses me off about Target's deception is that they KNEW this breach happened a while ago, and they sat on that information, choosing to attempt to keep it quiet until after the holiday shopping was done. They were cornered into revealing it when the bulk of the shopping season was over, but even then they downplayed it, lied about the numbers of people affected, and offered a 10% off weekend to try to get people in for those last days of holiday shopping... If they had ANY integrity, they'd have let people know as soon as they'd confirmed it, but they didn't.

So now I'm rubbing two nickels together to pay for gasoline to get to work while I wait for USPS to deliver my new card, and I can only hope Target stores become like ghost towns because of this abuse of customers' trust.
 
2014-01-10 03:51:36 PM

brantgoose: I lost my damn credit card recently and now all of my online accounts are nagging me for a new number.

I think I will get another credit card and use it only for online purchases and pre-payments. That way I will never lose it because it will never leave my secret hidey-hole.

One card for home shopping and another for brick and mortar store purchases. I don't see a downside.


I like your plan, but I also like having all my purchase info consolidated.  I need to use my card tonight and tomorrow but then I think I'll order a new one.  I use it so much I should probably request a new number once a year anyway.
 
2014-01-10 03:51:41 PM
This is why I have 1,000 credit cards with no more than a $45 limit on each one. Sure people yell and hit me when I am paying for something like, say, a new HDTV at Best Buy, but you can never be too safe.

I am safe!  SAFE I SAY!
 
2014-01-10 03:52:47 PM

VladTheEmailer: stampylives: vonmatrices: At some point, it will be ALL the credit card numbers.

ALL the credit card numbers are stolen.

0000 0000 0000 0001
0000 0000 0000 0002
0000 0000 0000 0003
0000 0000 0000 0004
0000 0000 0000 0005
0000 0000 0000 0006

These fail the Luhn check... 0000 0000 0000 0000 however....


If interested:

www.loveinfographics.com
 
2014-01-10 03:53:47 PM
Ha! My bank saw that I bought some coffee and flour at Target on the morning of the 27th and sent me a new card without my even asking.
 
2014-01-10 03:54:22 PM
I wonder if this means Target's REDcard system was hacked?

In any case, this goes far beyond their shiatty "a few POS terminals were hacked, that's all!" excuse.
 
2014-01-10 03:55:19 PM

stampylives: vonmatrices: At some point, it will be ALL the credit card numbers.

ALL the credit card numbers are stolen.

0000 0000 0000 0001
0000 0000 0000 0002
0000 0000 0000 0003
0000 0000 0000 0004
0000 0000 0000 0005
0000 0000 0000 0006


Just to be picky, I do believe not every number combination is a valid card number.  There is a certain algorithm to it.  I remember back in the day there where credit card number generators that you could feed to AOL, and they would not check if it was a valid card until a month was up, so a person never had to pay for AOL if you just kept signing back up every month.  Or so OTHER people tell me...
 
2014-01-10 03:55:27 PM

mainsail: Wow. I wish it had been Wall Mart. I never shop there.


static.guim.co.uk

"That can happen."
 
2014-01-10 03:55:34 PM
ZeroCorpse:
So now I'm rubbing two nickels together to pay for gasoline to get to work while I wait for USPS to deliver my new card,


This is essentially why I have two credit cards. I never use the older one, it's just sitting there in case of emergencies. The newer one gives me 'frequent flyer miles' (har har, I'll probably never have enough to bother using) and excellent protection in case of a breach. Technically I may still have an account with Chase but at this point I don't actually know (or care), and they've never sent me a new card so I'd be surprised if it was still open.
 
2014-01-10 03:58:27 PM

12349876: Walker: Ok this is getting silly. there are only 300 million people in the USA. That includes infants and people who don't even know what Target is. Are you saying 1 in 3 Americans visited Target during this short time period?

I think there's a lot of double counting going on.  They're almost certainly assuming each card counts as a separate person and maybe even each transaction is a different person.



So you mean when McDonald's says "Over 100 billion served" they don't mean 100 billion different people?

I'm skeptical.
 
2014-01-10 04:01:38 PM

brantgoose: I think I will get another credit card and use it only for online purchases and pre-payments.


You can get a new CC number for every online purchase.
 
2014-01-10 04:01:59 PM
OK.... You know.... the NSA gotta know who did this... I mean, they are pretty much snooping around in everything at this point...  this had to be like two burglars bumping into each other while trying to steal the same precious jewel...
 
2014-01-10 04:02:16 PM
With those numbers, it's like jumping off a ten story building vs a twenty story building. Past a certain point, the difference doesn't matter.
 
2014-01-10 04:05:15 PM
Mr Namegoeshere got hit for $10. We don't know if that was a test, or if they have so many cards that they can hit each one for $10 in the hopes that more people will fail to notice such a small amount, and still make major money.

So yeah, new cards for all.
 
2014-01-10 04:08:09 PM

namegoeshere: Mr Namegoeshere got hit for $10. We don't know if that was a test, or if they have so many cards that they can hit each one for $10 in the hopes that more people will fail to notice such a small amount, and still make major money.

So yeah, new cards for all.


Or could it be some farker? 2 months at a time, you know.
 
2014-01-10 04:10:56 PM

uncleacid: They may want to chang their name.


[thatswasis.gif]
 
2014-01-10 04:12:47 PM
Damn you Gov. Christie!
 
2014-01-10 04:15:47 PM

mayIFark: namegoeshere: Mr Namegoeshere got hit for $10. We don't know if that was a test, or if they have so many cards that they can hit each one for $10 in the hopes that more people will fail to notice such a small amount, and still make major money.

So yeah, new cards for all.

Or could it be some farker? 2 months at a time, you know.


Shhhh... I told him I got sponsored...  ; )
 
2014-01-10 04:17:18 PM
You know, at these levels the entire population is going to say, "Screw it, I may have never shopped at Target in my life, but I'm not taking any chances. Send me a new set of cards for all my accounts."

Buy credit-card-making-machinery stock immediately.
 
2014-01-10 04:19:59 PM

acohn: brantgoose: I think I will get another credit card and use it only for online purchases and pre-payments.

You can get a new CC number for every online purchase.


I do exactly that. Citibank's credit card system lets you generate Virtual Account Numbers that are good for a single usage. I particularly like them for the dickweed companies who try to auto-renew stuff without your consent.
 
2014-01-10 04:21:07 PM
Don't shop at target, or Walmart, Don't care.
 
2014-01-10 04:22:48 PM
brantgoose: I think I will get another credit card and use it only for online purchases and pre-payments.

Now, with linky: You can get a new CC number for each online purchase.
 
2014-01-10 04:24:01 PM

ladyfortuna: ZeroCorpse:
So now I'm rubbing two nickels together to pay for gasoline to get to work while I wait for USPS to deliver my new card,


This is essentially why I have two credit cards. I never use the older one, it's just sitting there in case of emergencies. The newer one gives me 'frequent flyer miles' (har har, I'll probably never have enough to bother using) and excellent protection in case of a breach. Technically I may still have an account with Chase but at this point I don't actually know (or care), and they've never sent me a new card so I'd be surprised if it was still open.


My moms friend had her emergency card canceled for lack of use.
 
2014-01-10 04:33:56 PM

MBooda: Damn you Gov. Christie!


like shooting at the broadside of a barn.
 
2014-01-10 04:34:43 PM

acohn: brantgoose: I think I will get another credit card and use it only for online purchases and pre-payments.

Now, with linky: You can get a new CC number for each online purchase.


Did you accidentally the whole thing?
 
2014-01-10 04:35:48 PM
And when do the Feds get involved?
 
2014-01-10 04:41:02 PM

VladTheEmailer: stampylives: vonmatrices: At some point, it will be ALL the credit card numbers.

ALL the credit card numbers are stolen.

0000 0000 0000 0001
0000 0000 0000 0002
0000 0000 0000 0003
0000 0000 0000 0004
0000 0000 0000 0005
0000 0000 0000 0006

These fail the Luhn check... 0000 0000 0000 0000 however....


All Visa cards start with 4.
All Mastercards start with 5.
 
2014-01-10 04:41:19 PM
Are we ready for Bitcoin yet?
 
2014-01-10 04:45:19 PM

Ex-Texan: Don't shop at target, or Walmart, Don't care.


Dude, you're hip and edgy as hell!
 
2014-01-10 04:50:35 PM
Well....I see Target will be getting a new CEO within a month. He'll probably make more money when he leaves then the combined total monthly payroll for four stores.
 
2014-01-10 05:02:25 PM

tricycleracer: The company now says that other kinds of information were taken, including mailing and email addresses, phone numbers and names.

Someone got into the loyalty program.  My email address isn't on my Amex stripe.


I got an email from Target about the breach, and was puzzled because I don't have a Target card.

Then I remembered the stuff I'd bought on Target baby and wedding registry lists.  D'oh.
 
2014-01-10 05:02:30 PM

Pangea: So you mean when McDonald's says "Over 100 billion served" they don't mean 100 billion different people?


That figure's never been people; it's always been hamburgers.
 
2014-01-10 05:04:39 PM

Snarfangel: The other, other shoe has dropped!

[drawception.com image 300x250]


Caterpillar last seen at O'Malley's bar killing people.
 
2014-01-10 05:05:31 PM

ChubbyTiger: acohn: brantgoose: I think I will get another credit card and use it only for online purchases and pre-payments.

Now, with linky: You can get a new CC number for each online purchase.

Did you accidentally the whole thing?


Fark keeps removing the hyperlink.  Anyway, B of A has Shopsafe, a service that lets you generate a virtual CC number linked to your CC account.  You can use it for single online purchases or recurring payments (up to 12).  Citi has the same thing, and both products are from the same vendor: Orbiscom.
 
2014-01-10 05:11:02 PM

orezona: yakmans_dad: My wife's card information (obviously) was stolen, but when she asked her credit union about it she said the thieves hadn't used it.

Didn't send her a new card.

/Is that insane?
//or what?

She needs to demand it.

My bank (Chase) went ahead and sent out new cards to both me and my wife unsolicited.


You know Chase has questionable ethics. However they have been very good to me. They immediately helped me when my credit card was stolen. They have answered all my questions in a timely manner. Granted I never took out a home loan, but overall they are a good bank.
 
2014-01-10 05:16:03 PM

ladyfortuna: ZeroCorpse:
So now I'm rubbing two nickels together to pay for gasoline to get to work while I wait for USPS to deliver my new card,


This is essentially why I have two credit cards. I never use the older one, it's just sitting there in case of emergencies. The newer one gives me 'frequent flyer miles' (har har, I'll probably never have enough to bother using) and excellent protection in case of a breach. Technically I may still have an account with Chase but at this point I don't actually know (or care), and they've never sent me a new card so I'd be surprised if it was still open.


Good luck with that.  My main bank flagged a credit card charge as possible fraud (but didn't bother to contact me immediately to verify), leaving me standing at the register like a chump.  "Ha, ha!" I exclaimed as I whipped out my backup card.  Also declined.  So I crossed my fingers and swiped the debit card (same bank as my primary credit card).  It worked.  So, once I got settled at home, I called the second card and asked WTF happened.  "That charge was out of character for your regular spending pattern."  "I have no spending pattern with you.  I haven't charged anything on that card since May."  "Exactly."  :facepalms:  Called the first bank and told them to call me on my cell phone  before flagging my card so I'm not left standing there like a chump.  I have enough money there that they say "yes sir" and "of course sir" and "I'm so sorry this happened sir".  So far, they haven't flagged my card since then.

Of course, I'm only comfortable having a loose rein on that card because the bank sends me a text and an email any time there's a charge over $10.  Usually comes through before I've put my wallet away.
 
2014-01-10 05:25:39 PM
gifrific.com
 
2014-01-10 05:33:23 PM

spamky: [gifrific.com image 500x200]


You're late to that party dude.
 
2014-01-10 05:36:26 PM

Belias: Are we ready for Bitcoin yet?


I hope not. (http://tinyurl.com/n2qtsog)
 
2014-01-10 05:40:47 PM

Parthenogenetic: tricycleracer: The company now says that other kinds of information were taken, including mailing and email addresses, phone numbers and names.

Someone got into the loyalty program.  My email address isn't on my Amex stripe.

I got an email from Target about the breach, and was puzzled because I don't have a Target card.

Then I remembered the stuff I'd bought on Target baby and wedding registry lists.  D'oh.


That email may not have been from Target.  I hope you didn't click on any of its links.
 
2014-01-10 05:51:28 PM

ZeroCorpse: And meanwhile, I'm still here waiting for the USPS to deliver my replacement card which is about a week overdue. Apparently, travel across the country in the middle of a winter storm is enough to make the USPS lose things for several days.

What pisses me off about Target's deception is that they KNEW this breach happened a while ago, and they sat on that information, choosing to attempt to keep it quiet until after the holiday shopping was done. They were cornered into revealing it when the bulk of the shopping season was over, but even then they downplayed it, lied about the numbers of people affected, and offered a 10% off weekend to try to get people in for those last days of holiday shopping... If they had ANY integrity, they'd have let people know as soon as they'd confirmed it, but they didn't.

So now I'm rubbing two nickels together to pay for gasoline to get to work while I wait for USPS to deliver my new card, and I can only hope Target stores become like ghost towns because of this abuse of customers' trust.


My bank canceled my debit card last week but the replacement hasn't shown up yet.  They said it could take up to three weeks.

Thanks Target.  Find the IT person who didn't do his goddamn job and pound his testicles with a 3 pound sledgehammer.
 
2014-01-10 05:55:15 PM

acohn: Belias: Are we ready for Bitcoin yet?

I hope not. (http://tinyurl.com/n2qtsog)


"Individuals" is the wrong term for that article's conclusions.  Many of those top holders are very likely companies, such as exchanges and payment processors.  Care to hazard a guess at the number of "individuals" it would take to get to 50% of outstanding US dollars, if we allow corporations/banks/etc to be classified as "individuals"?

In contrast to you, I hope to be able to spend Bitcoin as easily as I do USD as soon as possible.  A purchase made today via Bitcoin at (for instance overstock.com) stands exactly zero chance of theft, no matter who hacks overstock's systems.  This is a paradigm shift from yesterday's payment systems.  It places the security of my finances in my control.
 
2014-01-10 06:04:18 PM
Lsherm:My bank canceled my debit card last week but the replacement hasn't shown up yet.  They said it could take up to three weeks.

Thanks Target.  Find the IT person who didn't do his goddamn job and pound his testicles with a 3 pound sledgehammer.



Target is committed to diversity in its workforce, and believes that woman have an equal right to pummeling by sledgehammers.
 
2014-01-10 06:07:10 PM

yakmans_dad: My wife's card information (obviously) was stolen, but when she asked her credit union about it she said the thieves hadn't used it.

Didn't send her a new card.

/Is that insane?
//or what?


My credit union sent a new card without me asking.
 
2014-01-10 06:15:48 PM

Lsherm: Thanks Target. Find the IT person who didn't do his goddamn job and pound his testicles with a 3 pound sledgehammer.


How about we find the thieves?
 
2014-01-10 06:17:05 PM

DrewCurtisJr: Lsherm: Thanks Target. Find the IT person who didn't do his goddamn job and pound his testicles with a 3 pound sledgehammer.

How about we find the thieves?


Them too, but why in the name of all that is holy were they storing PINs?
 
2014-01-10 06:17:40 PM
So anyone else thinking this is going to be the death knell of Target...? I mean it's not the end of the world, but this isn't exactly the happiest PR event ever conceived and will more than likely drive an awful lot of people away.
 
2014-01-10 06:37:41 PM

Snarfangel: Lsherm:My bank canceled my debit card last week but the replacement hasn't shown up yet.  They said it could take up to three weeks.

Thanks Target.  Find the IT person who didn't do his goddamn job and pound his testicles with a 3 pound sledgehammer.


Target is committed to diversity in its workforce, and believes that woman have an equal right to pummeling by sledgehammers.


Women in IT have to work harder and smarter than men because IT is overrepresented by men.  So it follows the IT person who farked up is a man.
 
2014-01-10 06:54:14 PM
Bought something at Target around Halloween, don't remember what.  Got mail a last week my card may have been compromised, to expect a new one in the mail, and my current one will be turned off in 4 weeks.  Got the new one monday, tested it tuesday, and chopped up the old one today.  So in 3 weeks I get to update my card info for all those bloody auto-pay things I have setup so I don't have to worry about paying bills.  I'm thinking this is a good time to let my newspaper sub die, in 3 years it's gone from $9.99/mo to $17.99.  They have never notified me of a price increase, they just do it.  Plus the paper sucks nowdays.

I think the effect on Target will be short lived.  In fact, I wouldn't be surprised if we find out other large retailers were also hit by the same attack.
 
2014-01-10 07:14:40 PM

Lando Lincoln: Okay okay okay. We really meant to say, "anyone that has ever shopped at Target in the past five years with a credit or debit card."


Also, anyone who has applied for a Target REDcard.  They've said that email addresses and other personal info has gotten out, not just debit/credit card info.

In addition to giving out your personal info right and left, then lying about it, they are also selling "gift cards" that don't do anything.  You give them money, they give you a cheap piece of plastic that simply does nothing.  It's a great gift for the person who has everything, since that person won't eve need to go buy anything.

They've done so much wrong, it looks intentional.  They've been lying about how many people were effected.  They started out with "They don't have your PIN information", then we learned they were lying about that.  So far, they have lied about each and every aspect of it until there was evidence that they couldn't cover up.

But that won't keep the board of directors from getting multi-million-dollar bonuses at the end of the year.
 
2014-01-10 07:17:26 PM

Snotnose: Bought something at Target around Halloween, don't remember what.  Got mail a last week my card may have been compromised, to expect a new one in the mail, and my current one will be turned off in 4 weeks.  Got the new one monday, tested it tuesday, and chopped up the old one today.  So in 3 weeks I get to update my card info for all those bloody auto-pay things I have setup so I don't have to worry about paying bills.  I'm thinking this is a good time to let my newspaper sub die, in 3 years it's gone from $9.99/mo to $17.99.  They have never notified me of a price increase, they just do it.  Plus the paper sucks nowdays.

I think the effect on Target will be short lived.  In fact, I wouldn't be surprised if we find out other large retailers were also hit by the same attack.


Looks like it's already happened.

http://krebsonsecurity.com/2014/01/hackers-steal-card-data-from-neim an -marcus/
 
2014-01-10 07:18:34 PM

jtown: Parthenogenetic: tricycleracer: The company now says that other kinds of information were taken, including mailing and email addresses, phone numbers and names.

Someone got into the loyalty program.  My email address isn't on my Amex stripe.

I got an email from Target about the breach, and was puzzled because I don't have a Target card.

Then I remembered the stuff I'd bought on Target baby and wedding registry lists.  D'oh.

That email may not have been from Target.  I hope you didn't click on any of its links.


Yeah, I thought about that too, since the header indicated the originating mail server was target.bfi0.com.  It turns out it was legit.   http://www.forbes.com/sites/jameslyne/2014/01/07/targets-latest-failu r e-and-how-to-spot-a-scam/

The email didn't contain any dodgy links or attachments.

Also, it was a verbatim copy of this:   https://corporate.target.com/discover/article/Important-Notice-Unauth o rized-access-to-payment-ca
 
2014-01-10 07:37:32 PM

Parthenogenetic: jtown: Parthenogenetic: tricycleracer: The company now says that other kinds of information were taken, including mailing and email addresses, phone numbers and names.

Someone got into the loyalty program.  My email address isn't on my Amex stripe.

I got an email from Target about the breach, and was puzzled because I don't have a Target card.

Then I remembered the stuff I'd bought on Target baby and wedding registry lists.  D'oh.

That email may not have been from Target.  I hope you didn't click on any of its links.

Yeah, I thought about that too, since the header indicated the originating mail server was target.bfi0.com.  It turns out it was legit.   http://www.forbes.com/sites/jameslyne/2014/01/07/targets-latest-failu r e-and-how-to-spot-a-scam/

The email didn't contain any dodgy links or attachments.

Also, it was a verbatim copy of this:   https://corporate.target.com/discover/article/Important-Notice-Unauth o rized-access-to-payment-ca


At this point, I wouldn't even trust Target to secure their web servers.  Their IT security appears to be total clown shoes.  Card swipers compromised at a national level, transaction history database compromised, sitting on the knowledge for weeks so people will unwittingly continue to shop at their stores.  Nuke the whole thing from orbit.  Time to show the American public that some companies  aren't too big to fail.  For fark's sake, they've mishandled private data of 1/3 of the nation and exposed 40,000,000 to risk of significant financial problems.  Shut it down.  Shut it down forever.

geekcentricity.com

I'm starting to feel bad that I spent almost a hundred bucks (cash!) there this week.  Only because they were the only store I could find that had what I wanted in stock.
 
2014-01-10 07:45:08 PM
Uh, plus your names, birthdates and emails. Uh, and your security questions.
 
2014-01-10 08:31:58 PM
40, 70, now 110 million accounts compromised... They clearly have no clue or incentive to reveal the true scope of this mess.

Target maintains data on more than just their "guests".  Who knows which or how many of their 'partners' have provided or sold Target consumer data such as name/address/email/phone/social security number information?  in bulk.  TransUnion previously sold information to fake companies then later labeled them 'hackers' when the data was misused (the data was sold by TransUnion).  My expectation is most banks & all three credit reporting agencies are selling much of this info not only to Target, but to EVERY data-miner that is willing to pay for it.  Even less scrupulous companies are also consolidating this information and selling it to anyone with a checking or bitcoin account.

Since we now know Target doesn't encrypt most of their guests' data (apparently only 4-digit pin numbers are encrypted), it's probably safe to assume most other multinational corporations also don't bother.  It costs money to encrypt & decrypt & adds hassle to parse so why bother - it hampers marketing efforts which affects shareholders' returns & furthermore there's no penalty for losing it other than bad PR.  If a company is unwilling to pay their own employees/associates a living wage, it's extremely likely they're also unwilling to introduce costs protecting 'guest' or prospective customers' personal information.

Sadly, consumers have no assurance Target or any corporation is protecting their data.  Corporations and government agencies are rushing to collect as much consumer data as possible with no regulations/laws, oversight, or limits concerning how it must or can  be protected, shared/sold, linked, destroyed, etc.  Consumers are as much the product as the 'guest'.

But my biggest concern with all this... WHY is Target storing all this information?  They don't need to store it to process payments.  So they intentionally decided to store it for another purpose.  They haven't stated any intention to stop storing it either.  So when will someone (news/media/Congress) ask them what they've been doing with it or detail what they can do with it?  It must be important to Target in some way to store data about every 'guest' or potential guest or they wouldn't incur any costs storing it.
 
2014-01-10 08:56:54 PM
monitise.

know the name, love the name.

with shiat like this it is a matter of time cc security in the states matches our counterparts in europe.
 
2014-01-10 09:01:02 PM
funny, I pay cash and nothing like this ever happens.

Interesting that 'they' are pushing for a cashless society, where all your money could be wiped out by hackers or magnets.
 
2014-01-10 09:02:48 PM

Iczer: So anyone else thinking this is going to be the death knell of Target...? I mean it's not the end of the world, but this isn't exactly the happiest PR event ever conceived and will more than likely drive an awful lot of people away.


I hope not... despite this, I've long preferred to shop at Target over Walmart or whatever other options are out there. The only reason I've only gone once in two years is that I have to drive an hour or be visiting relatives to be anywhere near a store. I do most of my 'not local' shopping on Amazon because of Prime, but that's because Target's web site has annoyed me for as long as I could remember.
 
2014-01-10 09:11:40 PM
Target IT used to be very good, but they then outsourced.
 
2014-01-10 09:12:24 PM
I know that everyone thinks Chase is a bunch of assholes (Haven't had any problems *yet*, and having a branch with biking distance of home, walking distance of work, and branches back home is nice to have), but they handled this right.

Learned about the breach from Chase dropping me a "Your card *may* have been compromised.  We are shipping you a new card next week."  Showed up, turned it on, old card automatically turned off, life is good (except for those times when I forget to change saved credit card info, and I get "X cannot process your purchase" emails.).

/And now I get to play credit card roulette with my $500 limit "Building Credit history" card.
 
2014-01-10 09:14:12 PM

desertfool: Target IT used to be very good, but they then outsourced.


Just saying.  There's a reason why Silicon Valley is still booming.

/Or would be, if it wasn't for the wage trap.  Not nearly enough housing => higher rents => higher wages => higher rents => repeat until everyone says "Screw this" and leaves.
 
2014-01-10 09:22:41 PM

meyerkev: desertfool: Target IT used to be very good, but they then outsourced.

Just saying.  There's a reason why Silicon Valley is still booming.

/Or would be, if it wasn't for the wage trap.  Not nearly enough housing => higher rents => higher wages => higher rents => repeat until everyone says "Screw this" and leaves.


though the wage trap is actually kinda nice, because when you say "Screw this" and leave, you'll have been making $125-250K as a reasonably senior employee, and the rest of the country inflated to try and poach the "Screw this" people, while the COL stayed sane.

So if you want to be making $120K/year in Cleveland, go into CS.

/Seriously, I keep wavering between "Seriously, you pay me this much to wear jeans to work?" and "Yeah, and then my code goes on a million computers/goes on 12 computers who each use it to make a couple hundred million dollars, so where's my cut of that?"
 
2014-01-10 09:45:12 PM
Aw come on, the CEO said he's "truly" sorry!  Whiskey-Tango-Foxtrot!!  He should let at least half of the 100 million people kick him in the nuts.
 
2014-01-10 10:48:13 PM

meyerkev: meyerkev: desertfool: Target IT used to be very good, but they then outsourced.

Just saying.  There's a reason why Silicon Valley is still booming.

/Or would be, if it wasn't for the wage trap.  Not nearly enough housing => higher rents => higher wages => higher rents => repeat until everyone says "Screw this" and leaves.

though the wage trap is actually kinda nice, because when you say "Screw this" and leave, you'll have been making $125-250K as a reasonably senior employee, and the rest of the country inflated to try and poach the "Screw this" people, while the COL stayed sane.

So if you want to be making $120K/year in Cleveland, go into CS.

/Seriously, I keep wavering between "Seriously, you pay me this much to wear jeans to work?" and "Yeah, and then my code goes on a million computers/goes on 12 computers who each use it to make a couple hundred million dollars, so where's my cut of that?"


I just started a job a few weeks ago as an IT director for a fairly large university at their engineering school, which is comparatively small to the rest of the schools.  I started getting recruiting calls on day two offering either the same or more money in the midwest even though I'm currently on the east coast.  There's apparently a small pool of people who aren't academics but support academics in this country, and the schools all steal from one another.

Seriously, there was a POS community college in Ohio that was offering $160K to be a "director" of a department that only had 10 employees.  Housing prices are a third of what they are here.  I was seriously tempted.
 
2014-01-10 11:14:36 PM

Lsherm: meyerkev: meyerkev: desertfool: Target IT used to be very good, but they then outsourced.

Just saying.  There's a reason why Silicon Valley is still booming.

/Or would be, if it wasn't for the wage trap.  Not nearly enough housing => higher rents => higher wages => higher rents => repeat until everyone says "Screw this" and leaves.

though the wage trap is actually kinda nice, because when you say "Screw this" and leave, you'll have been making $125-250K as a reasonably senior employee, and the rest of the country inflated to try and poach the "Screw this" people, while the COL stayed sane.

So if you want to be making $120K/year in Cleveland, go into CS.

/Seriously, I keep wavering between "Seriously, you pay me this much to wear jeans to work?" and "Yeah, and then my code goes on a million computers/goes on 12 computers who each use it to make a couple hundred million dollars, so where's my cut of that?"

I just started a job a few weeks ago as an IT director for a fairly large university at their engineering school, which is comparatively small to the rest of the schools.  I started getting recruiting calls on day two offering either the same or more money in the midwest even though I'm currently on the east coast.  There's apparently a small pool of people who aren't academics but support academics in this country, and the schools all steal from one another.

Seriously, there was a POS community college in Ohio that was offering $160K to be a "director" of a department that only had 10 employees.  Housing prices are a third of what they are here.  I was seriously tempted.


I am a network engineer in Wisconsin (not Madison or Milwaukee) and I get paid well. Cost of living is low, housing is affordable. Schools are good (have a kid.) Yeah, it isn't the fun of a big city, but we live well and if we want big city amenities we go to Milwaukee/Chicago/Minneapolis.

But it is cold as hell up here.
 
2014-01-11 03:36:33 AM
Are these jagoffs ever going to come out and admit that their database was compromised and that data obtained through third-party data collection was part of it?

Seriously...I doubt that 70 Million+ people have target cards that would warrant them having address info...
You don't get address info from picking up a CC# from a POS machine.
These guys are farking shady. (Target...not just the thieves.)
 
2014-01-11 04:04:45 AM
This type of thing is likely to continue on ever larger scales. It's almost unbelievable, and maybe it is...
propaganda.
Why?
Perhaps the govt has a -new- monetary system worked out, but understands that it will be very unpopular.

Then, stoke fear in the customer base [everyone who uses money] ; when everyone is sufficiently panicked ... roll out the nasty sugar coated bolus.
Open wide for Chunkeee!
 
2014-01-11 05:22:38 AM

ChewbaccaJones: Are these jagoffs ever going to come out and admit that their database was compromised and that data obtained through third-party data collection was part of it?

Seriously...I doubt that 70 Million+ people have target cards that would warrant them having address info...
You don't get address info from picking up a CC# from a POS machine.
These guys are farking shady. (Target...not just the thieves.)


I may be a database noob, but I've been thinking about it since the initial news broke, and that's about all I could come up with as well. I'm actually curious to see if any of it affects me; I bought clothes last March, but if they can pull my address of that one purchase, I'll be impressed, since I never gave it to them.
 
2014-01-11 05:35:49 AM
blog.ivman.com
 
2014-01-11 02:36:47 PM
My wife didn't believe me at first when I said identity thieves bought all of that porn with our credit card. Then this story comes out and now she has too.
 
Displayed 112 of 112 comments

View Voting Results: Smartest and Funniest


This thread is closed to new comments.

Continue Farking
Submit a Link »






Report