Target continues to investigate the recent data breach. In a statement published on Friday, the retailer revealed that the hackers stole the personal details of up to 70 million individuals.
The information includes names, mailing addresses, and phone numbers or email addresses. The company says that much of the data “is partial in nature.”
Target says that it will notify customers whose email addresses they have. However, the organization highlights the fact that the emails it will be sending out contain general tips on how to avoid falling victim to scams.
The communications will not request recipients to provide any personal information. It’s important to remember this, because cybercriminals and fraudsters have already started launching scams that leverage news of the breach.
“I know that it is frustrating for our guests to learn that this information was taken and we are truly sorry they are having to endure this,” stated Gregg Steinhafel, president and CEO of Target.
“I also want our guests to know that understanding and sharing the facts related to this incident is important to me and the entire Target team.”
The company also emphasizes the fact that in case any fraudulent charges are made as a result of the breach, impacted individuals are not liable for them. In addition, victims of the incident are being offered one year of free credit and identity protection services.
Initially, Target noted that around 40 million people were impacted. However, as the breach is being investigated, more details are coming to light. It’s still uncertain how the cybercriminals managed to hack the retailer’s systems, but experts say they’ve most likely used a piece of malware.
As far as the culprits are concerned, it’s uncertain who they are. However, Brian Krebs has identified an individual who appears to be responsible for selling the stolen information on the underground market.