Target admits customer PIN data removed but says it’s “Secure” - ABC6 - Providence, RI and New Bedford, MA News, Weather

Target admits customer PIN data removed but says it’s “Secure”

Posted: Updated:

By News Staff

News@abc6.com

Twitter: https://twitter.com/ABC6

Facebook: https://www.facebook.com/ABC6News?ref=hl

Target corp. said that PIN data was lifted during its massive data breach, but that it's "confident that PIN numbers are safe and secure."

"The most important thing for our guests to know is that their debit card accounts have not been compromised due to the encrypted PIN numbers being taken," Target said in a statement Friday afternoon about the data breach that might have affected as many as 40 million customers between Nov. 27 and Dec. 15.

Earlier this week, a Reuters report said debit card PIN data may have been compromised, which Target denied. But through "additional forensics work" on Friday morning, the company confirmed "that strongly encrypted PIN data was removed."

Target defended its position saying the PIN is encrypted at the keypad with what is known as Triple DES when a guest uses a debit card in its stores and enters a PIN.

"The PIN information was fully encrypted at the keypad, remained encrypted within our system, and remained encrypted when it was removed from our systems," Target said in its statement on Friday.

Target said it "does not have access to nor does it store the encryption key" within its system.

"The PIN information is encrypted within Target's systems and can only be decrypted when it is received by our external, independent payment processor," Target said on Friday. "What this means is that the 'key' necessary to decrypt that data has never existed within Target's system and could not have been taken during this incident."

Experts believed the PINs might have been compromised because banks such as JPMorgan Chase decided to limit ATM withdrawals and debit card purchases of affected Target customers.

Target is reaching out to affected customers after it learned scam artists posing as company representatives tried to steal more personal information.

©WLNE-TV / ABC6/ ABC NEWS

Powered by WorldNow

10 Orms Street Providence, R.I. 02904
401-453-8000

All content © Copyright 2000 - 2014 WorldNow and WLNE.
All Rights Reserved.

For more information on this site, please read our Privacy Policy and Terms of Service.