One more retail chain in the US has been hit by one of the biggest hacks ever. US DIY store Home Depot has confirmed that its payment systems have been hacked and a target data theft hit 70 million. Home Depot has 2200 stores spread across US and Canada.
The latest Home Depot security data breach is one more in a long line of fraudulent debit card fraud and security breach which has hit retail outlets across US. The breach was first reported by Security blogger Brian Krebs who reported that the hack targeted credit and debit cards used on malware-infected cash registers.
Chairman Frank Blake apologized in a press release and said, “For the frustration and anxiety this causes our customers.” He further added “I want to thank them for their patience and support as we work through this issue,”
According to Mr. Krebs, there has been a steep rise in the instances of fraudulent ATM withdrawals on customers’ accounts since the hack was made public. In all probability, fraudsters have been capitalizing on a huge data of stolen information about Home Depot customers which are available for sale in cybercrime shops online
Such stolen information is available for sale from the illegal crime shops. Fraudsters obtain all the information needed to counterfeit cards and the cardholder’s full name and city, state and postcode of the store it was stolen from.
Mr. Krebs added, “The zip code data is important because it allows the bad guys to quickly and more accurately locate the social security number and data or birth of cardholders using criminal services in the underground that sell this information,”
Such information can enable thieves to call automated bank systems and change the PIN on cards. Earlier Mr. Krebs had also unearthed Target breach which had seen 40 million debit and credit card numbers stolen. Personal information of up to 70 million customers was also exposed.