Lain you would love to read that.. please use the Google translator or better.. http://www.spiegel.de/politik/deuts...ker-von-spd-und-gruenen-empoert-a-941287.html http://www.lemonde.fr/technologies/...aire-des-outils-de-la-nsa_4341385_651865.html
Some dude was on tv claiming that they cleaned out his account by going to the bank and removing his money. Um...yeah...the pins are encrypted. I'm not saying that they couldn't have found a way to get past that, but I AM saying that it's far more likely that this guy decided that he'd like to have a bit of money at Target's expense. With cameras in most modern atm's they can easily prove that happened or not. Not so much, buys that happened in store I can't imagine the number of folks who are having post-Christmas-spending regret and are now attempting to claim their cards were used illegally, not that much different from Hurricane Katrina fakers. This could well put Target in a VERY BAD place. Required Disclosure: I worked for Target HQ for many years. Heads are going to roll. They are being pretty quiet about the source of it. I can only assume, and hope that they have a hold on it, and will reveal the sources behind it. Not hearing a word so far, which makes me think they just don't know. Then again, the Secret Service is in on it too, so maybe it will be forthcoming. As much as I hate what Target has become in order to compete with the Big W, I still remember when it was my hometown company that had class, largely because Dayton's was still in charge, and remained so for many years following the Target takeover, but sadly like most companies now, it's all about taking all they can get both from employees and from customers. This is one reason I rail so strongly against Walmart. It doesn't take much to see that what used to be good companies now compete with them in order to even stay in business and revert to the same ruthless tactics. Greg Steinhafel is an asshole, and if he somehow ended up with the blame for this, I wouldn't cry. But, like normal, it will fall on IT. He was strongly against having a home for anorexic/bulemic girls in his neighborhood out there in Minnetonka (his little rich enclave), and used his influence/money to prevent it. He can suck a dick.
The hack went on for TWO FUCKING WEEKS! Give me a fucking break., If someone isn't taken out back and shot, then someone else isn't doing their job right. Big fucking surprise, right?
I'm wondering too. I do know that Target has outsourced much of it's IT dept. It could be as simple as a disgruntled employee. Who knows. But yeah, heads will roll, and it's going to hurt Target in a HUGE way. Some of my family, knowing I was once an employee, don't even want to shop there. One also worked there, and has the RedCard. That's how far the distrust is going. They better do something soon to stop the hemorrhaging. All I can think of that might do that is to be upfront about the source of the incursion. I CAN guess that since the news came out right before Xmas, that Walmart and other stores were likely rubbing their hands in glee.
The banks are going online and buying back all of the Target Customers' stolen credit card data from the thieves. http://krebsonsecurity.com/2013/12/whos-selling-credit-cards-from-target/
Today, your fridge, TV and stereo are getting hacked! http://www.businessinsider.com/hackers-use-a-refridgerator-to-attack-businesses-2014-1
A family member of mine received an email from Target that their data had been compromised in the second wave. It was likely because they were registered at and used Target.com. I advised changing the password to the hotmail acct as well as Target's site, and re-registering with a new id at Target.com, IF they even do register again.
It's very odd that they received an email and I did not. I have used bank data at and bought from Target.com, but I received no email. I changed my password to be on the safe side, considering that I have bank data attached.
Hmmm...actually after many questions about the email address they received the warning about, it seems to have been tied to their Target Cartwheel app on their phone. That is the one that was tied to that particular email address. That would explain why I didn't get a notice, as I do not use that app. Based upon that it might be safe to assume that if registered at Target.com, one might not have been compromised. Still...better safe than sorry. I changed all necessary passwords.
Passwords should be rotated on a 30 day basis, making sure not to reuse any pass you have chosen at all if possible. Using a mixture of caps and numerals, longer is better. I enjoy twisting phrases around for easy memory storage. MyB0ss1sl4m3 Bunn131sh0t etc. Obviously never use the same password on more than one account, and never share credentials with anyone.
