RSS
Twitter
TJX Fighting Hard To Raise The Bar Even Higher For Worst Credit Card Data Leak Ever
from the go-big-or-don't-go-at-all dept
Last month, TJX, the parent company of retailers T.J. Maxx and Marshalls among others, disclosed that it had lost a ton of customer credit-card and personal information, with some suggesting it could be the biggest breach ever. If you follow these sorts of things, you'll remember that the way they typically go is that the group that's lost the data will disclose a breach, then, after the initial furor has died down, they'll come back a few weeks later and say they lost a whole lot more than they first thought. With that in mind, any guesses as to what TJX has said today? Surprise, surprise -- a ton more information was exposed than the company first disclosed. This sort of leak continues to happen, and nothing gets done to put a stop to it. It doesn't appear that many companies care enough, or have the proper incentives to devote the necessary level of resources to security. But remember what the banks and credit card companies' surveys tell us: these breaches, and identity theft in general, isn't a problem.
Reader Comments
(Flattened / Threaded)
first...
I'm glad that I've never shopped at either of those stores.... and whoever says that I.D. theft is not a problem should post their name, S.S.# , D.O.B., address, and mothers maiden name.. i need a vacation that they would "not" be paying for ...
(reply to this comment) (link to this comment)
first...
I'm glad that I've never shopped at either of those stores.... and whoever says that I.D. theft is not a problem should post their name, S.S.# , D.O.B., address, and mothers maiden name.. i need a vacation that they would "not" be paying for ...
(reply to this comment) (link to this comment)
Use the Force Luke
I.D. theft is not a problem
I.D. theft is not a problem
I.D. theft is not a problem
I.D. theft is not a problem
These are not the droids you're looking for.
These are not the droids I'm looking for.
(reply to this comment) (link to this comment)
Being a T.J. Maxx associate, people often ask me if we've straightened it out. We don't know anything. So stop asking. Also, you can avoid this mess by paying in cash.
(reply to this comment) (link to this comment)
Re:
hey Mee,
Your company made a huge mistake in collecting and storing data from Track 1 of the credit card strip on the back of each card. That has the CC#, Exp Date and CCV#. What should have been collected is the info from Track 2 which is name and address only, no financial information. Maybe you should go to your manangement and ask them how to address those concerns from customers, like myself included, whose CC were compromised. Oh and dont tell me to pay in cash. I can cancel a stolen credit card....someone rips me off of my cash- cant get that back. If its so tuff to answer peoples questions about this major breach then get out or kindly tell people to address their concerns by calling a 1-800 number. With your angry attitude you really shouldnt be addressing these people anyhow.
(reply to this comment) (link to this comment)
What I don't understand is why these companies with so much data to loose feel that they need to hold onto such sensitive data for the long term, especially if they don't have the security and resources to keep it safe.
(reply to this comment) (link to this comment)
Umm..
Jeffrey Schmidt
525878546
29/07/1987
780 McDonnell Rd, SAN FRANCISCO, CA, 94128
Collins
Ok, so how is this gonna get me a vacation?....
(reply to this comment) (link to this comment)
Re:
You, my friend, have got balls of steel.
(reply to this comment) (link to this comment)
Re:
"jeffrey" you lied, that's not nice.
(reply to this comment) (link to this comment)
Fine them!
At this point, the authorities need to step in and begin dolling out serious fines for these companies. Identity theft not only hurts individuals, but ultimately causes nationwide economic repurcussions when people start declaring bankruptcy because they can't pay their bills.
(sounding like a poster for ID theft)
It hurts us all!
(reply to this comment) (link to this comment)
TJMaxx will be bought out
Visa will force a buyout or a shutdown. Visa did that for CardSystems last year which is now operating under a new name and new management.
Visa has implemented PCI security regulations which is a series of security best practices for the specific security of the cardholder data. If you accept VISA cards you must pass this security audit or negotiate an extension or waiver. VISA is not fooling around anymore.
in_the_industry
(reply to this comment) (link to this comment)
Prosecute the Real Criminal
I understand the exposure the company has, along with many other companies that have yet to be hacked. Why are we not talking about finding and prosecuting the criminals that stole the information in the first place. I know it's a difficult task, but it must be done, otherwise, other companies will find themselves in this situation.
(reply to this comment) (link to this comment)
Add Your Comment