Retail chain Target confirmed unauthorized access to its customersâ€™ payment card data that might have affected 40 million accounts. Sensitive information stolen in the attack includes customer names, credit or debit card numbers, card expiration dates and Card Verification Values, according to a press release.
â€œThe breach window is definitely expanding,â€ an anti-fraud analyst told security researcher Brian Krebs. â€œWe canâ€™t say for sure that all stores were impacted, but we do see customers all over the U.S. that were victimized.â€
Since November, including on Black Friday weekend, credit and debit card details were allegedly stolen through card swiping devices placed in US stores. After stealing the banking information, cyber-criminals were able to make counterfeit cards.
â€œTargetâ€™s first priority is preserving the trust of our guests and we have moved swiftly to address this issue, so guests can shop with confidence,â€ Target chairman Gregg Steinhafel said. â€œWe regret any inconvenience this may cause.â€
The Minneapolis-based company has almost 1,800 stores in the United States and 124 in Canada. The retailer announced it is working closely with law enforcement and financial institutions to find those responsible.