Target: 1.2M NC card users affected by security breach

Posted December 23, 2013

— Target says an estimated 1.2 million North Carolina card users might have had their credit and debit card accounts exposed over a three-week period in which more than 40 million accounts nationwide were stolen as part of a security breach.

The discount store announced Thursday that it discovered the breach which affected customers who swiped their cards at a store between Nov. 27 and Dec. 15.

It does not affect customers who made online purchases.

Customer names, credit and debit card numbers, card expiration dates and the embedded code on the magnetic strip on back of the card were stolen.

"We believe that approximately 1,212,000 of the potentially involved accounts had transactions in North Carolina," the company said in a notice filed Friday with the North Carolina Attorney General's Office.

The state requires the notice, obtained Monday by WRAL News, as part of the Identity Theft Protection Act of 2005.

The company, however, said it couldn't be sure how many of those affected cards belonged to residents of North Carolina since its point-of-sale terminals don't record customers' mailing addresses.

According to the notice, Target discovered the breach Dec. 15.

The company has not disclosed exactly how the breach occurred but said it has fixed the problem and is working with a third-party forensics firm to investigate and prevent future problems.

A spokeswoman said Monday that it's also working with the U.S. Secret Service and the U.S. Department of Justice.

The retailer has advised customers to check their statements carefully and to report suspicious charges to their credit card companies and call Target at 866-852-8680. Cases of identity theft can also be reported to law enforcement or the Federal Trade Commission.

"Target's first priority is preserving the trust of our guests, and we have moved swiftly to address this issue, so guests can shop with confidence," Chairman, President and CEO Gregg Steinhafel said Thursday in a statement.

The theft marks the second-largest credit card breach in U.S. history, exceeded only by a scam that began in 2005 involving retailer TJX Cos. and affected at least 45.7 million card users.


This story is closed for comments.

Oldest First
View all
  • admyank Dec 24, 2013

    "The company, however, said it couldn't be sure how many of those affected cards belonged to residents of North Carolina since its point-of-sale terminals don't record customers' mailing addresses."

    No - but it knows where the terminals are where the cards were swiped.

  • admyank Dec 24, 2013

    I look at it like this. Target does need to learn a lesson about complacency and card security.

    However, so do the card processors that charge outrageous fees for PCI compliance. They charge this and scan every device that holds that information every two years.

    So was Target PCI compliant? Sure. If you believe that those who push PCI compliance know what they are doing. They don't.

    So now Target needs to learn a financial lesson the hard way. I would not join the class action suits out of state. I would sue them criminally, not civil.

    Now, putting this all into perspective - has no security applied to it, and the hackers are sitting on top of it taking information as soon as you hit the submit button. But there is no outrage there.

    Is the government going to give you a 10% discount if your ID is stolen? I don't think so.

  • richardsonr6 Dec 24, 2013

    I understand people being upset about this.. but to blame Target is not fair.. They are not the ones that stole the information.. they were targeted too... What would they get out of it.. People talking junk about them just like I lot of folks on here are.. Please direct your anger at the right culprit..

  • Wacky_dood Dec 23, 2013

    Looks like the lawyers are all over this. At least 5 suits have been filed. If history is an example, the courts will consolidate them into one big class. Target will settle for $200,000,000 of which $199,000,000 will go the class attorneys and the 40 million customers will get a coupon for 10% off their next Target purchase.

  • DontVote4LiarsCheatsOrThieves Dec 23, 2013

    Asking cause I don't know. The way they're saying this happened, doesn't it have to be an inside job? Someone within their computer department or with access to the software that processes card transactions???

    The reason I'm wondering is because it's all Target, no other store chain. It's like someone(s) was trying to take them down or hurt the store chain badly.

    Might've worked too.

  • snowl Dec 23, 2013

    I found my 2 purchase receipts for Target and I did pay with cash, so no worries. I try to use cash if the purchase is less than $20. I'm not a big spender at Target. I like to shop around.

  • Ex-Republican Dec 23, 2013

    Target Corporation is worth an estimated 65 billion dollars and is only second to Wal-Mart in revenue. The Sarbanes-Oxley law, which applies to Target, mandates policies regarding disclosure of security breaches to its customers. There are no such laws in place regulating federal government security breaches. This is one reason why ObamaCare is so dangerous.

  • stymieindurham Dec 23, 2013

    I have NEVER gone back to TARGET since the year they refused the Salvation Army's kettle people and told their employee's NOT to greet custimers with Merry Christmas.

  • scubagirl2 Dec 23, 2013

    So glad I do not shop at Target ..... I do believe that this can happen to any store though,

  • thelewisclan Dec 23, 2013

    The number they keep giving just hangs up on people - finally found this number 605-362-4400 that someone put on their facebook page and got through in 20 minutes to the Target bank that issues the cards. Was able to cancel my redcard very easily. Since it was a debit card that has it's own ACH number, my bank was unable to block it from debiting if it was compromised.