This can't be a good week for TJX, the parent company of T.J. Maxx, Marshalls and a bunch of other retailers. As you probably remember, earlier this year, the company made news after it came out that some scammers had broken in and accessed credit card and other personal info
on tens of millions of customers -- which many consider to be the biggest such data leak ever
. Of course, in many of the other cases of data leaks, the end result, while annoying, didn't actually involve criminals using the leaked data. No such luck for TJX. A new report says that some scammers in Florida used the data from TJX to create dummy credit cards
, and then purchased Wal-Mart and Sam's Club gift cards which were redeemed for about $8 million worth of goods. It's interesting to note what brought the scam down was that the scammers started using multiple cards at once -- and almost all of the cards were for $400, just under the $500 limit that would require identification.
On top of this latest bit of bad publicity, TJX also has to deal with the fact that one of its largest shareholders is now suing the company
over the breach -- saying that the company hid important information about the breach from shareholders. This may not be the "Digital Enron"
security case that some people are expecting, but it is shaping up to be quite a mess.