One was about 40 million credit/debit cards during the time frame stated.

Second was about 70 million customer's personal info - name, address, phone, email or some combo - no time frame - if you've ever shopped Target, registered with them online, etc - you are at risk for this. I got that email, too .

more info: http://money.cnn.com/2014/01/16/news/companies/target-breach-report/

Rachel finally gave up calling. Yay (rachel from card holders services)

Thanks PN

Why store encrypted PIN numbers at all? Or debit card numbers?

The stored data was name, address, phone and email. The credit card and debit card/PIN was intercepted at the point of transaction.

We hadn't shopped there in years and haven't received anything yet.

http://www.wfsb.com/story/24475081/target-breach-could-impact-customers-who-shopped-years-ago

I still haven't found out if it includes their optical dept.

The dates in question were November 27 and December 15, 2013.

I wouldn't trust any e-mail sent to you from Target. Don't open any links in the e-mail and only give information when YOU make the direct contact by phone to a known number or directly to your Credit Card provider's online website that you have used before with you own password.

Target e-mails could be part of a phishing scheme to get info from you or to get you to install malware on your computer simply by clicking on a link.

I got that email too and was wondering about the verity of the credit monitoring offer.

On edit - this was the email address it came from, which actually looks bogus (using 'target' as the subdomain instead of actually coming from target.com) - TargetNews@target.bfi0.com

So many jerks trying to take advantage of this situation. I get fake e-mails from UPS, USPS and when I was on Facebook they even found a way to send me fake e-mails from friends that were on my list.

I found this link talking about that Target address that you've received. They say it's a legitimate Target e-mail at the end of the story.

" The email is from this sketchy address: TargetNews@target.bfi0.com. It's a common practice for scammers to use a company's name in front of their own domain, which often contains inexplicable characters like "bfi0."



"But this particular email is actually legitimate, as is the domain and the offer of a year of free credit monitoring. Target confirmed the email's validity on a website the retailer is using to log all its communication with consumers.

The reason why some people are getting the email who haven't shopped there recently is because the hackers may have stolen personal information that the retailer had on file, including names, mailing addresses, phone numbers and email addresses.

Target could have retained that information from a purchase you made many years ago."

http://www.seattlepi.com/technology/businessinsider/article/Everyone-Thinks-This-Target-Email-Is-A-Scam-5150268.php

That's the official one they're sending out. If you've bought anything online from them ever or ever signed up for their rewards program they had your email and you'll be getting a free one year credit monitoring service. I'm in the second wave of security breach too. I called Target the day I got the email and they told me my credit card information was safe, but my name, address, phone number and email may have been stolen. They said they're sending these emails out to every person they have an email address on.

I also read here someplace that there was some connection to their having email addresses on people in their database which may have went back to when they and Amazon were associated. I don't really know much about that tho.

So, buckle up your seatbelt and tighten your email security. We're in for a deluge of spam and phishing scams.

info and if I want free credit check thingies. No link included, just how to do it.

Thanks.

I heard something about emails from Target being a scam...Try googling Target scam or somethin' like that.

because names, addresses, emails were taken (not the black friday thing but longer term stuff).

They did not give me a link, I found the Target one and went their.

Yes, I'm also getting E-Mail from them.
I haven't done any online business with them. Ever!
I can't remember the last time I was in a Target. Heck I don't know where the local store is or if there even is a local store.
So how do they know to send me E-Mails. How do they know where to send an E-Mail!

Holiday that it is the CU isn't open but I will check with them tomorrow.

Ya, I know the first rule in the guide says.... Don't Panic.
Still, what the heck is up with this?

Lots of those. If you have concerns, go to Target's website or your credit card issuer's site. Don't click links in emails.

Lots of people have your email address.

Non the less I will check with my CU tomorrow.
They are usual good, if not "overly good" about such things.
They will block large part orders, and I am happy they do so if something appears "out of the normal".
Yup, the world knowing my E-Mail address can be annoying.

You are most correct and I'll say it again...

Like the man said. If you don't know who it's from DON'T CLICK ON IT!

Thanks.

are scams. Don't click any links in such emails. If you have questions, go directly to Target's website.

People are exploiting fears about Target and their credit cards. Don't fall for those exploits.

Thank you for your concern but I did that.
http://www.target.com/
Big notice says "Important notice : data incident involving certain guest information, learn more>

BIG link on their main page goes to
https://corporate.target.com/about/payment-card-issue.aspx?ref=sr_shorturl_paymentcardresponse#?lnk=Other_011214_HP_0_E1_26_11_2013|E1|T:Template_Home5|C:

Link there goes to
"data breach FAQ
Answers to commonly asked questions for guests impacted by the recent data breach."
https://corporate.target.com/about/shopping-experience/payment-card-issue-FAQ
How many guests were affected by the additional stolen information?

Up to 70 million individuals may be affected.

I should be in *both* waves of data breaches, and I haven't received any notifications from Target at all.

I shopped there using plastic during the affected date range, *and* I have an account registered at target.com. They definitely have my email address.

Target does not care about me, LOL.

getting in the Big Kids Group too.

Fill out one of those product registration cards and you'll get some spam. My dog's spam has finally slowed down, 3 yrs after he died. It was an experiment to see how much one product registration would get us. TOO MUCH.

which I got too and thought was maybe a scam.

Everyone Thinks This Target Email Is A Scam

Millions of people have gotten a suspicious email from Target in the last couple days informing them that their personal information may have been stolen in the recent data breach.

The email offers customers a year of free credit monitoring through Experian, which includes identity theft insurance.

That sounds great, except no one trusts that the email is actually from Target.

But this particular email is actually legitimate, as is the domain and the offer of a year of free credit monitoring. Target confirmed the email's validity on a website the retailer is using to log all its communication with consumers.

I checked mine against what it should be and mine is real.

I've never used a credit or debit card there and don't shop there often, so I was suspicious. I called Target and they confirmed they were the sender. She said I got one because I have an online Target account, even though I never bought anything from them online. I signed up for the free year credit monitoring.

That's where the hackers got my information from.

So far, the hackers have tried to access my gmail account and I got the most horrendous cell phone harassment starting Friday night that I have ever dealt with - phone calls and text messages almost all night, continuing for 2 days.

The email I got from Target provided no links, though it did provide the web address (not linked) to the Experian Protect My ID.

At this point I guess I have no option but to sign up for the service. It's obvious someone has got my information.

Years.

misspelled or miscapitalized letters, wrong or missing company logo, and so on.

I didn't have to ask for it. They just sent. That's a good thing.