More Trouble at Target: Hackers Landed Encrypted Debit Card PIN Data

By Steve Anderson December 27, 2013

More fallout arises in the wake of the recent hacking that Target found itself on the bad end of recently, as the retailer added to the list of information landed by the hackers when the late November / early December hack was carried out. Previously, Target acknowledged the loss of credit card numbers, along with expiration dates and security codes in the attack...but a new victim has arisen to join the ranks: debit card PIN data.

The hacking had an enormous impact, hitting around 40 million customers at last report, and worse, the data has since been spotted on the black market, otherwise known as the last place anyone would ever want to see a credit card number show up. The hacking put banks throughout the United States on high alert, and protecting customers from fraud became job one. The upshot, at least according to Target, is that the debit PINs should be “safe and secure,” largely owing to the point that Target encrypts such data with Triple DES encryption, and locks that encryption in right at the point of the keypad. Thus, the data not only started out encrypted, but it remained encrypted when it went into the system, and when the hackers got it, encrypted it remained.

What's more, the only way that the information can be immediately decrypted is to get said key from the independent payment processor service that Target works with, and the key has never actually existed within Target's systems at any point, which means a completely different hacking would be necessary to get the information from somewhere else.

It's likely to be at least something of a comfort for those impacted by the development, if perhaps only a cold comfort. Reports suggest that banks have been quick to react, and those who came in for replacement debit cards outright got said replacements with due haste. So the numbers in question may not have a lot of value after all, but it's still likely to leave a few gun-shy users next time holiday shopping season comes around.

It's hard to imagine this having a very chilling effect on debit and credit card use, whether in stores or online; that card is a very big part of a lot of users' lives, and most aren't likely to just let it fall by the wayside from one incident. But users were certainly practicing the correct levels of vigilance, and Target has reportedly been hard at work with both the Justice Department and the Secret Service in a bid to catch those responsible. These things are bound to happen—the sheer amount of potential return involved for the hackers is a pretty strong incentive—but with the proper vigilance, many of the problems associated with such hackings can be reduced and minimized.

Still, the recent Target hacking shows us conclusively what was predicted in a recent report from Kaspersky Lab: cyber-criminals would be taking on private data, money and Bitcoins in 2014, and this attack had two out of three elements ready to go. More of it is likely to arrive, but a little sound vigilance—as many displayed in this hacking—will likely mean the difference between a minor hiccup and a total disaster.




Edited by Stefania Viscusi

Contributing TechZone360 Writer

SHARE THIS ARTICLE
Related Articles

Why People Don't Update Their Computers

By: Special Guest    7/13/2018

When the WannaCry ransomware attacked companies all over the world in 2017, experts soon realized it was meant to be stopped by regular updating. Even…

Read More

More Intelligence About The New Intelligence

By: Rich Tehrani    7/9/2018

TMC recently announced the launch of three new artificial intelligence events under the banner of The New Intelligence. I recently spoke with TMC's Ex…

Read More

Technology, Innovation, and Compliance: How Businesses Approach the Digital Age

By: Special Guest    6/29/2018

Organizations must align internally to achieve effective innovation. Companies should consider creating cross-functional teams or, at a minimum, incre…

Read More

Contribute Your Brain Power to The New Intelligence

By: Paula Bernier    6/28/2018

The three events that are part of The New Intelligence are all about how businesses and service providers, and their customers, can benefit from artif…

Read More

TMC Launches The New Intelligence - an Unparalleled AI and Machine Learning Conference & Expo in Florida

By: TMCnet News    6/28/2018

TMC announced the launch of The New Intelligence conference and expo - The Event Powering the AI Revolution. This exciting new event will take place o…

Read More