Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Target breach likely an inside job, data security expert says
Pioneer Press ^ | 1-11-14 | Nick Woltman and Tom Webb

Posted on 01/11/2014 7:11:32 AM PST by TurboZamboni

Target's disclosure that hackers stole customers' names, home addresses, phone numbers and email addresses suggests that the crime was an inside job, a fraud analyst said Friday.

The new batch of stolen identity information -- from up to 70 million additional Target customers -- is not stored on the point-of-sale devices used to pilfer the payment card data, said Avivah Litan, a fraud analyst at information technology firm Gartner.

The fact that the thieves got access to a second data source makes it more likely they had the help of an insider.

(Excerpt) Read more at twincities.com ...


TOPICS: Crime/Corruption; News/Current Events
KEYWORDS: 0bamacarenavigators; privacy; security; target; theft
So I guess their annoying asking for my zip code to buy something really helped security a lot.
1 posted on 01/11/2014 7:11:32 AM PST by TurboZamboni
[ Post Reply | Private Reply | View Replies]

To: TurboZamboni

They are reporting 110 million. That means about 1 in every 3 Americans bought something there last year.

The Ad executives ought to get a big bonus.


2 posted on 01/11/2014 7:15:20 AM PST by Balding_Eagle (Damn ObamaCare, full speed ahead!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: TurboZamboni
Have there been any lawsuits filed against Target as a result of this breech?

If a Class Action suit is put together, then those affected will probably only get three or four dollars, but the shysters will rake in millions.

3 posted on 01/11/2014 7:15:49 AM PST by The Sons of Liberty (Who but a TYRANT shoves down another man's throat what he has exempted himself from?)
[ Post Reply | Private Reply | To 1 | View Replies]

To: TurboZamboni

“So I guess their annoying asking for my zip code to buy something really helped security a lot.”

Apparently, most of our credit cards have zip codes, addresses, phone #’s and other data, we don’t everyone to have.

My wife used her bank credit card at Target, and last week the card was replaced without any bad actions/activities. Now we know why.

This was/is an act of economic terrorism, and those at fault, should be treated as terrorists.


4 posted on 01/11/2014 7:17:36 AM PST by Grampa Dave ( Obamacare is a Trinity of Lies! Obamaganda is failing 24/7/365! Obamaganda will fail 24/7/365!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: TurboZamboni

I thought it was an inside job from the start. The level of compromise involved was just too great.


5 posted on 01/11/2014 7:18:45 AM PST by KoRn (Department of Homeland Security, Certified - "Right Wing Extremist")
[ Post Reply | Private Reply | To 1 | View Replies]

To: TurboZamboni

“asking for my zip code”

Done for marketing purposes.


6 posted on 01/11/2014 7:20:35 AM PST by HereInTheHeartland (Obama lied; our healthcare died.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: TurboZamboni

My credit card just got hit, and I’ve never shopped at Target.


7 posted on 01/11/2014 7:28:24 AM PST by Fresh Wind (The last remnants of the Old Republic have been swept away.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Grampa Dave
Apparently, most of our credit cards have zip codes, addresses, phone #’s and other data

That info is not stored on the card.

8 posted on 01/11/2014 7:38:01 AM PST by ken in texas
[ Post Reply | Private Reply | To 4 | View Replies]

To: HereInTheHeartland

Correct. They want to know where their customers are coming from. It helps when they are deciding to open new stores.


9 posted on 01/11/2014 7:42:41 AM PST by Cowboy Bob (They are called "Liberals" because the word "parasite" was already taken.)
[ Post Reply | Private Reply | To 6 | View Replies]

To: Cowboy Bob

And advertise. And now that could have been used to compromise their customers.


10 posted on 01/11/2014 7:44:04 AM PST by HereInTheHeartland (Obama lied; our healthcare died.)
[ Post Reply | Private Reply | To 9 | View Replies]

To: Fresh Wind
My credit card just got hit, and I’ve never shopped at Target.

What about Needless Markup? They've been hit, as well.

11 posted on 01/11/2014 7:54:53 AM PST by PAR35
[ Post Reply | Private Reply | To 7 | View Replies]

To: Fresh Wind
My credit card just got hit, and I’ve never shopped at Target.

Then it was unrelated to Target. People can be victims of crooks who didn't steal their information from Target.

12 posted on 01/11/2014 8:02:36 AM PST by Defiant (Obama is The Bard of Canard.)
[ Post Reply | Private Reply | To 7 | View Replies]

To: All

I tried to buy a bottle of wine at Target a couple of months ago and the cashier wanted to card me and scan my driver’s license—even though I am clearly over 40.

I made a big fuss and refused to let him scan it. I wonder how many people have their licenses scanned in situations like this ? Is this information stored? I assume so.

What can a crook do with a copy of a driver’s license and a credit card?


13 posted on 01/11/2014 8:07:49 AM PST by JC85 (You can check out anytime you like, but you can never leave.)
[ Post Reply | Private Reply | To 11 | View Replies]

To: JC85

if Target only worried as much about customer privacy as they do pimping homo marriage...

http://abcnews.go.com/images/Politics/ht_target_ad_dm_120727_wblog.jpg


14 posted on 01/11/2014 8:10:21 AM PST by TurboZamboni (Marx smelled bad and lived with his parents .)
[ Post Reply | Private Reply | To 13 | View Replies]

To: All

It’s not just Target. I remember walking past an upscale club a few years ago and there was a line of people waiting to get in. What really stood out was that the staff was electronically carding everyone’s license with a hand-held device. And everyone was just sheepishly going along with it.


15 posted on 01/11/2014 8:25:39 AM PST by JC85 (You can check out anytime you like, but you can never leave.)
[ Post Reply | Private Reply | To 12 | View Replies]

To: JC85
"I tried to buy a bottle of wine at Target a couple of months ago and the cashier wanted to card me and scan my driver’s license—even though I am clearly over 40."

You might consider asking the store if that is really their policy, or was someone doing some freelance data collection.

There was a clerk in a local drug store who was very friendly and insistent that I sign up for the "rewards" card. I always said no thanks.

About a month later, it was on the news that a gang of Nigerians were running an identity theft ring by just that kind of means. That dude was from Nigeria.

My first thought was, "No way. That guy was too nice." My second thought was, "How many victims of con men have said those very words?"

16 posted on 01/11/2014 8:28:15 AM PST by Barnacle (Is treason a high crime or misdemeanor?)
[ Post Reply | Private Reply | To 13 | View Replies]

To: ken in texas

BS Ken, you work for a credit card company/finance company or don’t know about what is stored and has happened:

http://www.startribune.com/business/239599471.html

“Target reveals more customer data exposed in breach”

‘The size and scope of the consumer data heist from Target Corp. last month is much greater than previously thought, with up to 110 million people at risk by the exposure of credit and debit card numbers, as well as mailing addresses, e-mails and phone ­numbers, the company said Friday.

The revelation means that the data breach may be the largest ever involving a U.S. retailer and could lead to more complex types of fraud and identity theft for many of those affected.

“It’s big, it’s ugly, and it’s not fun for anyone but the bad guys,” said Jacob Ansari, a data forensics investigator at 403 Labs LLC in Brookfield, Wis.’


17 posted on 01/11/2014 8:28:44 AM PST by Grampa Dave ( Obamacare is a Trinity of Lies! Obamaganda is failing 24/7/365! Obamaganda will fail 24/7/365!)
[ Post Reply | Private Reply | To 8 | View Replies]

To: Barnacle
I think Target should disclose:

1) how many people's licenses they scanned as part of their ID checks for purchasers of alcohol.

2) how much of this information was retained and for how long, and

3) whether any of the data from the scanned drivers licenses was part of the breach.

18 posted on 01/11/2014 8:34:05 AM PST by JC85 (You can check out anytime you like, but you can never leave.)
[ Post Reply | Private Reply | To 16 | View Replies]

To: JC85
And everyone was just sheepishly going along with it.

Yep. I've seen the same thing. The patrons were in their 20's. You can imagine how uncool it would be for one of the group to say, "I'm not going in if they're going to scan my license."

The people running the joint struck me as unsavory. It's closed down now. Maybe they have enough data and now live in Aruba.

19 posted on 01/11/2014 8:35:54 AM PST by Barnacle (Is treason a high crime or misdemeanor?)
[ Post Reply | Private Reply | To 15 | View Replies]

To: TurboZamboni
If the Target security breach was an inside job, then Target Corporation could face very serious state and Federal felony charges. And prosecutors from other countries may get involved, since it's likely foreigners used their Visa or Mastercard-labelled credit cards in the USA during the November 25 to December 15, 2013 time frame.
20 posted on 01/11/2014 8:36:57 AM PST by RayChuang88 (FairTax: America's economic cure)
[ Post Reply | Private Reply | To 1 | View Replies]

To: JC85

I tried to buy a bottle of wine at Target a couple of months ago and the cashier wanted to card me and scan my driver’s license—even though I am clearly over 40.

I made a big fuss and refused to let him scan it. I wonder how many people have their licenses scanned in situations like this ? Is this information stored? I assume so.

What can a crook do with a copy of a driver’s license and a credit card?”

BOL! On my 65th birthday, my wife and I were shopping at Walmart, and I bought a bottle of wine, and the clerk carded me.

I thought my wife had served in the Navy instead of me re her remarks to the clerk. An asst. manager, came up to calm my wife down.

That Walmart had been targeted by the State Alcohol Beverage people and put underage people in the store to buy liquor. Two clerks lost their jobs due to selling alcohol to minors. So they were on a big alert.

A younger relative, who used to work for a credit card company’s fraud division advised us to never sign the back of a card with our signature. Instead, he said to put down, “See Photo Id”, aka drivers license.

Then, he said never let anyone scan your drivers license.

Have it under a clear plastic attachment so the clerk can see it. If they want to scan it, tell them to keep their purchase.

He, also, said to never etch your driver’s license on a valuable. If you had etched it, you need to block out the numbers.


21 posted on 01/11/2014 8:38:52 AM PST by Grampa Dave ( Obamacare is a Trinity of Lies! Obamaganda is failing 24/7/365! Obamaganda will fail 24/7/365!)
[ Post Reply | Private Reply | To 13 | View Replies]

To: JC85
What can a crook do with a copy of a driver’s license and a credit card?

A driver's license and birth certificate establishes identity and citizenship for just about any purpose. I would think it would be easier to finagle a birth certificate. All someone has to do is find out where you were born, then go to the town hall and pick up an embossed copy.

With those three things, they're good to go.

22 posted on 01/11/2014 8:40:18 AM PST by St_Thomas_Aquinas ( Isaiah 22:22, Matthew 16:19, Revelation 3:7)
[ Post Reply | Private Reply | To 13 | View Replies]

To: TurboZamboni
Target breach likely an inside job, data security expert says

"Duh"

23 posted on 01/11/2014 8:41:22 AM PST by logi_cal869
[ Post Reply | Private Reply | To 1 | View Replies]

To: All

I’m sure that it was not some rogue employee. When I made a spectacle of myself the manager came over and defended the employee. (”It’s policy”.)


24 posted on 01/11/2014 8:44:16 AM PST by JC85 (You can check out anytime you like, but you can never leave.)
[ Post Reply | Private Reply | To 20 | View Replies]

To: Balding_Eagle

Re the 110 million customers hit, there are other areas of disclosure, most of us are not happy with:

http://www.startribune.com/business/239599471.html

“Target reveals more customer data exposed in breach”

‘The size and scope of the consumer data heist from Target Corp. last month is much greater than previously thought, with up to 110 million people at risk by the exposure of credit and debit card numbers, as well as mailing addresses, e-mails and phone ­numbers, the company said Friday.

The revelation means that the data breach may be the largest ever involving a U.S. retailer and could lead to more complex types of fraud and identity theft for many of those affected.

“It’s big, it’s ugly, and it’s not fun for anyone but the bad guys,” said Jacob Ansari, a data forensics investigator at 403 Labs LLC in Brookfield, Wis.’


25 posted on 01/11/2014 8:45:03 AM PST by Grampa Dave ( Obamacare is a Trinity of Lies! Obamaganda is failing 24/7/365! Obamaganda will fail 24/7/365!)
[ Post Reply | Private Reply | To 2 | View Replies]

To: Grampa Dave

It’s the size, 110 million, that has red flags up for me. How many shoppers are there in the US? Subtract out kids under 16, and it really means that at least 1 out of every 3 adults bought something at Target.

That doesn’t pass the smell test for me.


26 posted on 01/11/2014 9:00:55 AM PST by Balding_Eagle (Damn ObamaCare, full speed ahead!)
[ Post Reply | Private Reply | To 25 | View Replies]

To: Barnacle

At checkout the O’Reily auto parts clerk asked if I wanted to join their club card. I said no, I already had too many.
Clerk said he had too many also.


27 posted on 01/11/2014 9:06:39 AM PST by Cold Heart
[ Post Reply | Private Reply | To 16 | View Replies]

To: Grampa Dave

“Target stores are retail stores in the United States that sell variety of merchandise. There are over 1725 target stores in the United States. The very first target store was opened in Roseville, MN in 1962. “

If there have been 110 million purchases in these 1725 stores, that means there 64,000 unique customers per store.

I don’t know what time period this was supposed to have occurred over, so I can’t go further.


28 posted on 01/11/2014 9:08:15 AM PST by Balding_Eagle (Damn ObamaCare, full speed ahead!)
[ Post Reply | Private Reply | To 25 | View Replies]

To: Balding_Eagle

The data appears to be coming from Target.

If you want to read it again.

If not, as Jim Rob would say, “Whatever!”


29 posted on 01/11/2014 9:44:29 AM PST by Grampa Dave ( Obamacare is a Trinity of Lies! Obamaganda is failing 24/7/365! Obamaganda will fail 24/7/365!)
[ Post Reply | Private Reply | To 26 | View Replies]

To: Balding_Eagle
They are reporting 110 million. That means about 1 in every 3 Americans bought something there last year.

Beat me to it. That's 1/3 of the entire population... every man, woman, child and illegal. That 110 million simply doesn't make any sense. There is no way there are 110 million people with cards out there. Was this number based on transactions with Targets cards, transactions with other cards, transactions with BET cards, transactions with checks or transactions online using every means of transactions imaginable or Target's data from mailings and those annoying "can we get your phone number"? No way did 110 million people make purchases in two and a half weeks. IOW, this is ALL of Targets' records meaning if you purchased something 10 years ago, you've been got. This isn't passing the smell test. Dry run by the NSA or whatever alphabet agency? Or another country or terrorist group? This wasn't done by a guy living in mama's basement. Was the initial date gathered in those two and Are we soon going to hear that the entire banking industry has been hacked?

30 posted on 01/11/2014 9:53:39 AM PST by bgill
[ Post Reply | Private Reply | To 2 | View Replies]

To: TurboZamboni

I’m wondering if they got one piece of data, if that would chain into more and more pieces of data? Say you used card A at Target. Would that open up links to cards B, C and D in your wallet? And if your spouse’s name was on any of them, would it open up cards X, Y and Z in their wallets. Then you signed for Junior and Juniorette to get cards when they got of age and this eventually wiggled it’s way into their data, too.


31 posted on 01/11/2014 10:01:49 AM PST by bgill
[ Post Reply | Private Reply | To 1 | View Replies]

To: Balding_Eagle

I’m in the fortunate 66% unaffected. Some time ago, I tried to purchase something on line (towels, maybe) from Target but their website demanded that I reconfigure my settings to accept their cookies before I could even browse their site. I thought, if they’re that intrusive, then I don’t need to do business with them. Now I’m glad I didn’t.


32 posted on 01/11/2014 10:11:34 AM PST by Fast Moving Angel (It is no more than a dream remembered, a Civilization gone with the wind.)
[ Post Reply | Private Reply | To 2 | View Replies]

To: Grampa Dave
you work for a credit card company/finance company or don’t know about what is stored and has happened:

Nice try, but no I don't work for one. Stuff like address, email, phone number is stored on other systems run by the credit card companies. After all, if you move or change your phone number the company doesn't issue you a new card. The fact that customer specific information was obtained does not mean that it is stored on the card, it means that the systems containing that information were penetrated.

33 posted on 01/11/2014 10:23:32 AM PST by ken in texas
[ Post Reply | Private Reply | To 17 | View Replies]

To: Barnacle

Grocery stores with customer perk cards now likely provide requested data to insurance companies to comply with some nuanced part of the thousands of pages in Obamacare . That way they can base your rates on the foods and things they see you’ve been buying. Nothing is private any more.


34 posted on 01/11/2014 12:58:37 PM PST by TurboZamboni (Marx smelled bad and lived with his parents .)
[ Post Reply | Private Reply | To 19 | View Replies]

To: TurboZamboni

It’s standard practice for me to get a “customer perks” card using an invented name. I like using Chick Hearn and the Laker’s ticket line phone number and arena address when I sign up. Must be a TON of junk mail going to my alter ego. Never give in.


35 posted on 01/11/2014 2:56:26 PM PST by FlyFisher
[ Post Reply | Private Reply | To 34 | View Replies]

To: TurboZamboni
Grocery stores with customer perk cards now likely provide requested data to insurance companies to comply with some nuanced part of the thousands of pages in Obamacare.

10-4 on that. About 10 years ago when Jewell Foods started the card thing in the Chicago area, I suspected as much and refused to get one. The checkers would reluctantly scan a store card for me to get the discounts.

I objected to the card on the grounds that it was an invasion of privacy. I gave examples of my concern that someday, the government might decide whether or not I was entitled to a particular medical treatment based on my database. Most people thought I was being paranoid and there would be no database. But, look where we are today.

By the way, I contacted the Jewell headquarters, they admitted keeping such data on individuals. To Jewell's credit, they ceased the card program last summer.

36 posted on 01/11/2014 4:41:43 PM PST by Barnacle (Is treason a high crime or misdemeanor?)
[ Post Reply | Private Reply | To 34 | View Replies]

To: ken in texas

“The fact that customer specific information was obtained does not mean that it is stored on the card, it means that the systems containing that information were penetrated.”

How was our personal data obtained?

Why/how did this ‘coincidence of penetration’ happen when the cards were being scammed in what appears to be a massive inside job?

We may find out just what is really on mag strip on our credit/debit cards.

Again, how was our personal data was obtained during this ‘coincidence of penetration’?


37 posted on 01/11/2014 5:02:14 PM PST by Grampa Dave ( Obamacare is a Trinity of Lies! Obamaganda is failing 24/7/365! Obamaganda will fail 24/7/365!)
[ Post Reply | Private Reply | To 33 | View Replies]

To: TurboZamboni; SeekAndFind

The Target collapse re data breeches is just one of many such problems, aka the tip of the iceberg:

http://www.freerepublic.com/focus/f-news/3110887/posts

Target Stores security breach just the tip of the iceberg
American Thinker ^ | 01/12/2014 | Rick Moran

Target has increased the estimate for the number of customers exposed in the massive hacking attack between Thanksgiving and December 14. It now appears at least 70 million consumers had their credit cards compromised.

Also, Neiman-Marcus announced that they, too, were victims of a cyber attack over Christmas. And in an exclusive report, Reuters is saying that several other well known retailers were also hacked over the holidays.

Neiman Marcus said an outside forensics firm discovered evidence on January 1 that indicated the retailer had been the victim of a cyber attack. It disclosed the breach nine days later, after another inquiry from Krebs, who was following up on reports about a surge in fraudulent charges traced to the retailer.

Target and J.C. Penney Co Inc. waited more than two years to admit that they were victims in 2007 of notorious hacker Albert Gonzalez, who was accused of masterminding the theft and reselling of millions of credit cards and ATM numbers.

During his trial the companies were represented by lawyers who did not identify their clients as Target and J.C Penney.

Doug Johnson, vice president of risk management policy with the American Bankers Association, said banks and credit card firms like Visa are forbidden from naming merchants that have been breached, unless they disclose it themselves.

Excerpt go to the link for full story:

http://www.freerepublic.com/focus/f-news/3110887/posts


38 posted on 01/12/2014 8:16:46 AM PST by Grampa Dave ( Obamacare is a Trinity of Lies! Obamaganda is failing 24/7/365! Obamaganda will fail 24/7/365!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: TurboZamboni

- Those Obamacare website “Navigators” seem to have figured that that credit card and Social Security info they asked for is giving them a big Chicago style “piece of the action” in the Target Stores scams…..


39 posted on 01/13/2014 10:37:23 AM PST by devolve ("He's just 'too talented' to do what 'ordinary people' do." "Barry of Bungle" "Homo Electus")
[ Post Reply | Private Reply | To 1 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson