/// Target Says PIN Numbers Among Data Stolen in Breach
Retail giant Target, still reeling from the disclosure that some 40 million credit and debit card numbers of its customers were stolen in a massive data breach, just announced that the among the information stolen were the personal identification numbers related to those cards. The company just issued a statement, which you can read in full below, saying that the data in question was “strongly encrypted,” meaning it would be difficult, if not impossible, for the attackers to put to use without significant computing power required to break the encryption. Target says it doesn’t keep copies of the encryption keys around, and the PIN information is only decrypted once it reaches the payment processor, someone like, say, First Data. “What this means is that the ‘key’ necessary to decrypt that data has never existed within Target’s system and could not have been taken during this incident,” the statement says. The breach affects people who used a credit or debit card at Target stores between Nov. 27 and Dec.
Go here to read the rest:
Target Says PIN Numbers Among Data Stolen in Breach