A massive Target credit card theft has just been announced. If you made a purchase at Target using a credit card or debit card at any time between November 27 and December 15, it is likely that your credit card number and your name, the card’s expiration date AND the card verification code (CVV) have been stolen.
Target last night sent out this email to their customers whose email addresses they have – it is unclear what measures, if any, they will take to contact all customers.
We wanted to make you aware of unauthorized access to Target payment card data. The unauthorized access may impact guests who made credit or debit card purchases in our U.S. stores from Nov. 27 to Dec. 15, 2013. Your trust is a top priority for Target, and we deeply regret the inconvenience this may cause. The privacy and protection of our guests’ information is a matter we take very seriously and we have worked swiftly to resolve the incident.
We began investigating the incident as soon as we learned of it. We have determined that the information involved in this incident included customer name, credit or debit card number, and the card’s expiration date and CVV.
[Editor's note: Our understanding from our research is that the CVV code is the security card on the back of your card - Target says, below, that it isn't.]
We are partnering with a leading third-party forensics firm to conduct a thorough investigation of the incident and to examine additional measures we can take that would be designed to help prevent incidents of this kind in the future. Additionally, Target alerted authorities and financial institutions immediately after we discovered and confirmed the unauthorized access, and we are putting our full resources behind these efforts.
[Section about getting your credit report, and reportings to the FTC deleted.]
Again, we want to stress that we regret any inconvenience or concern this incident may cause you. Be assured that we place a top priority on protecting the security of our guests’ personal information. Please do not hesitate to contact us at 866-852-8680 or visit Target’s website if you have any questions or concerns. If you used a non-Target credit or debit card at Target between Nov. 27 and Dec. 15 and have questions or concerns about activity on your card, please contact the issuing bank by calling the number on the back of your card.
[State-specific stuff about how to report fraud deleted.]
Is the CVV code the same as the three digit code on the back of my card?
No, the CVV code is not the same as the security code on the back of your card. As of now we have no indication that the three digit code on the back of the card has been impacted.
How do I know if this impacts me?
If you shopped at Target between Nov. 27 and Dec. 15, you should check your account for any suspicious or unusual activity. If you see something that appears fraudulent, REDcard holders should contact Target, others should contact their bank.
If I shopped at Target.com or in Canada should I be concerned?
No, this was an issue that impacted US stores.
Can I still use my card at Target?
Yes you can, if you used your card during the impacted periods, you should continue to monitor your accounts.
Has the issue been resolved?
Yes, Target moved swiftly to address this issue so guests can shop with confidence. We have identified and resolved the issue of unauthorized access to payment card data. The issue occurred between Nov. 27 and Dec. 15 and guests should continue to monitor their accounts.
How can I be assured you are taking the steps to protect my information in the future?
We continue to invest in our security practices to protect our guests’ information including the retention of a leading third party forensics firm to conduct a thorough investigation of this incident. We apologize for any inconvenience this has caused our guests.
If I call you what are your hours of operation?
Agents are available to take calls from 7am to 11pm daily.