Target officials, faced with high volumes to their call centers, are trying to get out some key information about the breach of certain credit and debit card information at U.S. Target stores from Nov. 27 through Dec. 15.
Among other things, the retail chain’s officials said they do not need to hear from customers unless they detect charges on their account they didn’t make. The company also said changes have been made to REDcard fraud detection and authorization procedures to add consumer protections, and it soon will announce how anyone affected by the crime can get free credit monitoring for a year.
Some other questions and answers from Target:
Q. What was the issue?
A. Malware was discovered on our point-of-sale systems in our U.S. stores on Dec. 15. At that time, we disabled the malicious code and immediately began notifying our card processors and the payment card networks.
Q. Has the issue been resolved?
A. Yes, the malware has been identified and eliminated.
Q. How could Target let all this credit and debit card information get accessed?
A. This unauthorized access is a crime, and we are taking it very seriously. While we can’t provide specifics because the investigation is ongoing, we are working closely with the U.S. Secret Service and Department of Justice to bring those responsible to justice.
Q. Will my card’s financial institution be able to tell me if I was affected?
A. Target has shared the information we have on impacted credit and debit card information with the processors, who in turn have shared with the issuing banks. You should continue to closely monitor your credit or debit card account information and immediately report any fraudulent or suspicious activity by calling the number on the back of your card. One recommended safety precaution is to change the PIN number on your debit card.
Q. Will someone steal my identity?
A. Personally identifiable information, such as Social Security numbers, was not involved in this incident. Stolen credit card information is generally used to make fraudulent charges, not for identity theft.
Q. You said CVV information was impacted. Is the CVV code the same as the three-digit security code on the back of my card?
A. There are two types of CVV data: CVV, which is encoded on the magnetic stripe, and CVV2, which is the three or four digit value that is printed on the back or front of your card. We have determined that this breach impacted CVV information. At this time, we have no indication that CVV2 data were compromised.
Q. Will I be held liable for fraudulent charges on my card?
A. Absolutely not. For information from the Federal Trade Commission on how federal law limits your liability for unauthorized charges, visit www.consumer.ftc.gov/articles/0213-lost-or-stolen-credit-atm-and-debit-cards.