It Could Have Been Worse: Target Data Breach Didn’t Include PIN Numbers

rated by 0 users
This post has 7 Replies | 1 Follower

Top 10 Contributor
Posts 25,886
Points 1,173,660
Joined: Sep 2007
ForumsAdministrator
News Posted: Sat, Dec 28 2013 10:40 AM
The fallout from the massive holiday Target data breach persists, as the retailer works feverishly to sort out exactly what happened and what to do about it. The 40 million or so customers who used cards at Target between November 27th and December 15th and had their data accessed by cybercrooks still need to be wary of any fraudulent activity, but there’s at least a shred of good news: your PIN numbers are safe.

According to the most recent update from Target, PIN numbers are encrypted at the keypad with Triple DES encryption, and the company can’t decrypt them because the keys don’t exist in Target’s system. Rather, a third-party external payment processor handles all of that data; thus, unless both Target and the payment processor were both hacked, the PINs are safe.

Target data breach war room
Target's war room

So there’s that, at least.

Target has also noted that it’s working with state attorneys general, the U.S. Department of Justice, and the Secret Service on the breach. Hopefully justice will be served soon.
  • | Post Points: 80
Not Ranked
Posts 7
Points 50
Joined: Sep 2013

Pretty easy to change your PIN, just in case.

  • | Post Points: 20
Top 10 Contributor
Posts 8,577
Points 103,230
Joined: Apr 2009
Location: Shenandoah Valley, Virginia
MembershipAdministrator
Moderator
realneil replied on Sat, Dec 28 2013 1:48 PM

Catch them and throw away the key.

Dogs are great judges of character, and if your dog doesn't like somebody being around, you shouldn't trust them.

  • | Post Points: 5
Not Ranked
Posts 17
Points 130
Joined: Mar 2012
RLott replied on Sat, Dec 28 2013 2:13 PM

pin numbers were in the hack mine got cleaned out .. target is covering their ass or trying to

  • | Post Points: 20
Top 500 Contributor
Posts 266
Points 2,975
Joined: Sep 2009
Location: Port Orchard, WA

I did heard and saw it on news on TV. It is big problems for all people. I hope Target will get everything to update or fix the problems.

  • | Post Points: 5
Not Ranked
Posts 52
Points 425
Joined: Dec 2010
MCook replied on Sat, Dec 28 2013 7:44 PM

That's not what I'm hearing, who is right here?

  • | Post Points: 5
Top 500 Contributor
Posts 234
Points 1,805
Joined: Nov 2012
ForumsAdministrator
Moderator
scolaner replied on Sun, Dec 29 2013 3:08 PM

Really? Are you sure that it's just that you were advised to change it? And when did they tell you about it--this news was an update. I wonder if they told you about your PIN before they confirmed that the PINs were safe.

These are genuine questions--I'm not trying to challenge you here.

  • | Post Points: 5
Top 50 Contributor
Posts 2,904
Points 24,545
Joined: Jul 2001
Location: United States, New York
digitaldd replied on Mon, Dec 30 2013 10:04 AM

PIN numbers safe but CVV codes were collected. Wait if target got PCI (Payment Card Industry) compliance certified I believe they weren't supposed to collect those.

  • | Post Points: 5
Page 1 of 1 (8 items) | RSS