1Likes
LinkBack URL
About LinkBacksHackers used a vendor's stolen log-on credentials to penetrate Home Depot's computer network and install custom-built malware that stole customer payment-card data and e-mail addresses, the retailer announced Thursday.
The malware, which had not been seen in other data thefts, was installed on self-checkout registers that were hacked. The malware was designed to evade antivirus software and has since been eliminated, Home Depot officials said.
The company had announced in September that the massive data breach allowed criminals to harvest information from 56 million credit and debit cards in the United States and Canada.
The latest revelations Thursday arose from the company's investigation. Another 53 million e-mail addresses were added to the list of compromised data.
Home Depot said the e-mail addresses did not contain passwords, payment card information or other sensitive personal information. The company is notifyingaffected customers and offering credit monitoring, though it said, "In all likelihood this will not impact you."
Customers were warned to be alert for so-called phishing scams that try to dupe people into revealing personal information or clicking on links that may install malware on their computers. It reiterated common tips to guard against identity theft.
The breach, which has cost $62 million, began in April and went undetected for several months. Home Depot is offering customers free identity-protection services, including a year of credit monitoring.
"We apologize for the frustration and anxiety this causes our customers and we thank you for your patience and support as we work through this issue,' the company told customers.
Some shoppers -- those with Home Depot Project Loan cards -- have received a $50 store gift card to "show our appreciation for being a loyal customer." The company did not mention the gift cards in its public statements Thursday.
The company said personal data that may have been compromised included customers' name, credit card number, expiration date, cardholder "verification value" and "service code." The verification value is not the three- or four-digit security code on a card.
Home Depot added that "at this time" it does not believe check payments were affected, and that "while we continue to determine the full scope, scale and impact
of the breach," there was no evidence that PIN numbers were compromised.
Torrent Invites! Buy, Trade, Sell Or Find Free Invites, For EVERY Private Tracker! HDBits.org, BTN, PTP, MTV, Empornium, Orpheus, Bibliotik, RED, IPT, TL, PHD etc!
Results 1 to 1 of 1
-
11-07-2014 #1Banned
- Reputation Points
- 1638
- Reputation Power
- 0
- Join Date
- Sep 2014
- Posts
- 506
- Time Online
- 3 d 4 h 14 m
- Avg. Time Online
- 1 m
- Mentioned
- 40 Post(s)
- Quoted
- 20 Post(s)
- Liked
- 142 times
- Feedbacks
- 9 (91%)
Home Depot hackers used vendor log-on to steal data and 3 million email addresses
pretty likes this.
Reply With Quote
