Welcome

Thank you for visiting Paducahsun.com, online home of The Paducah Sun.

Calendar
June 2012
S M T W T F S
27 28 29 30 31 01 02

Click here to submit an event.

Target: Encrypted PINS should be safe

By MAE ANDERSON Associated Press

ATLANTA  - Target says that debit-card PINs were among the financial information stolen from millions of customers who shopped at the retailer earlier this month.

The company said the stolen personal identification numbers, which customers type into keypads to make secure transactions, were encrypted and that this strongly reduces risk to customers. In addition to the encrypted PINs, customer names, credit and debit card numbers, card expiration dates and the embedded code on the magnetic strip on back of the cards were stolen from about 40 million credit and debit cards used at Target stores between Nov. 27 and Dec. 15.

Security analysts say it's the second-largest theft of card accounts in U.S. history, surpassed only by a scam that began in 2005 involving retailer TJX Cos.

"We remain confident that PIN numbers are safe and secure," spokeswoman Molly Snyder said in an emailed statement Friday. "The PIN information was fully encrypted at the keypad, remained encrypted within our system, and remained encrypted when it was removed from our systems."

However, Gartner security analyst Avivah Litan said Friday that the PIN numbers for the affected cards are vulnerable and people should change their codes since such data has been decrypted, or unlocked, before. In 2009 computer hacker Albert Gonzalez pleaded guilty to conspiracy, wire fraud and other charges after masterminding debit and credit card breaches in 2005 that targeted retailers such as T.J. Maxx, Barnes & Noble and OfficeMax.

Gonzalez's group was able to unlock encrypted data. Litan said changes have been made since then to make decrypting more difficult but "nothing is infallible."

"It's not impossible, not unprecedented (and) has been done before," she said.

Besides changing your PIN, Litan says shoppers should instead opt to use their signature to approve transactions because it is safer. Still, she said Target did "as much as could be reasonably expected" in this case.

"It's a leaky system to begin with," she said.

Credit card companies in the U.S. plan to replace magnetic strips with digital chips by the fall of 2015, a system already common in Europe and other countries that makes data theft more difficult.

Comments made about this article - 0 Total

Comment on this article

Your comment has been submitted for approval
captcha d01353101e8948ccaa32bb35bff2d2e8
Top Classifieds
  • HAVANESE PUPS AKC Home Raised, Best H ... Details
  • Labrador Pups $500 839-1198 Details
  • Details
  • Beautifully &Totally Renovated Co ... Details
  • Lower town Condo w/ garage, Leslie He ... Details
  • SEEING is believing! Don't buy p ... Details
  • House for SaleAurora, KY2 Bdr, Liv RM ... Details
  • 2007 NissanAltima Hybrid147,000 miles ... Details
  • AUTOMOVER SPECIAL6 lines - 14 dayson ... Details
  • Red 2013Ford Taurus Loaded30,000 + mi ... Details
  • 32'-2015 camper, sleeps 6, too m ... Details
  • 2002 HARLEY DAVIDSON "BAD BOY&qu ... Details

Most Popular
  1. Bowyer drives Lightning McQueen
  2. For summer bass, shaky head fishing won't be a mistake
  3. CRAZY Insanely costly primary leaves nothing settled
  1. Infestation of spiders forces local couple out of their home
  2. Family picks Paducah for large 50th reunion
  3. Local woman killed in Graves crash
  1. Bowyer drives Lightning McQueen
  2. Carpenter bees
  3. For summer bass, shaky head fishing won't be a mistake
Discussion

Check out these recently discussed stories and voice your opinion...