Threatwatch

Target offered hackers Black Friday sale

Credential-stealing malware

In-store customers’ credit and debit card data was stolen over the key holiday shopping weekend. The assault hit stores nationwide.

The bad guys somehow obtained the account data that cash registers collect when customers swipe their cards. 

“The type of data stolen — also known as ‘track data’ — allows crooks to create counterfeit cards by encoding the information onto any card with a magnetic stripe,” Krebs reports. “If the thieves also were able to intercept PIN data for debit transactions, they would theoretically be able to reproduce stolen debit cards and use them to withdraw cash from ATMs.”

ThreatWatch is a regularly updated catalog of data breaches successfully striking every sector of the globe, as reported by journalists, researchers and the victims themselves.

sector

Financial Services; Manufacturing

reported

December 18, 2013

reported by

Krebs on Security

number affected

40 million debit and credit card accounts

location of breach

United States

perpetrators

Criminals

location of perpetrators

Unknown

date breach occurred

between Nov. 27, 2013 and Dec. 15, 2013

date breach detected

December 17, 2013