The Herald of Everett, Washington
Customer service  |  Subscribe   |   Log in or sign up   |   Advertising information   |   Contact us

The top local business stories in your email

Contact Us:

Josh O'Connor
Phone: 425-339-3007

Maureen Bozlinski
General Sales Manager
Phone: 425-339-3445
Fax: 425-339-3049

Jim Davis
Phone: 425-339-3097

Site address:
1800 41st Street, S-300,
Everett, WA 98203

Mailing address:
P.O. Box 930
Everett, WA 98206

HBJ RSS feeds

Hackers can't crack PIN data, Target says

SHARE: facebook Twitter icon Linkedin icon Google+ icon Email icon |  PRINTER-FRIENDLY  |  COMMENTS
Los Angeles Times
LOS ANGELES -- Target Corp. said the cyber-crooks who hacked their way to approximately 40 million customer credit and debit card accounts during the holiday season accessed "strongly encrypted" PIN information.
Still, the retailer said Friday that it remains "confident that PIN numbers are safe and secure."
The PIN data is encrypted as it's entered by a customer at a keypad at checkout, protected with what's known as Triple DES encryption, according to Target.
The PIN information stays encrypted within Target's system and "remained encrypted when it was removed," the Minneapolis-based company said.
The code can only be cracked when the data is received by Target's external, independent payment processor, according to the retailer.
"What this means is that the 'key' necessary to decrypt that data has never existed within Target's system and could not have been taken during this incident," the company said Friday.
The retailer didn't address the possibility that hackers sophisticated enough to execute a break-in during prime shopping season-lasting from the crazed Black Friday weekend through Dec. 15 -- might be able to outwit the encryption defense.
"The most important thing for our guests to know is that their debit card accounts have not been compromised due to the encrypted PIN numbers being taken," Target said.
The company said its investigation into the incident is "still in the early stages" and "is continuing and ongoing."
Phony credit cards made with the stolen information are already being sold on the black market, according to some reports. A senator from Connecticut is calling for a probe into Target's security infrastructure; several state attorneys general have asked for more information on the hack.
After the breach, Target's perception among consumers hit its lowest point in more than six years, according to sentiment tracker YouGov BrandIndex.



Share your comments: Log in using your HeraldNet account or your Facebook, Twitter or Disqus profile. Comments that violate the rules are subject to removal. Please see our terms of use. Please note that you must verify your email address for your comments to appear.

You are logged in using your HeraldNet ID. Click here to update your profile. | Log out.

Our new comment system is not supported in IE 7. Please upgrade your browser here.

comments powered by Disqus

Market roundup