Paul Ziobro & Danny Yadron
The Wall Street Journal
January 11, 2014
Target Corp.’s holiday data breach was bigger than the company had previously said, penetrating more systems and compromising a new set of personal information affecting up to 70 million people.
The operator of nearly 1,800 U.S. stores said the data included a mix of names, mailing addresses, phone numbers and email addresses—information that is semipublic but which law-enforcement officials said is valued by thieves who could use it to lure victims with fake emails or hack into other accounts.
Target said the information was stored separately from the 40 million credit and debit card accounts that the company had previously said were affected. There was some overlap between the two sets of stolen data, but Target didn’t say how extensive it was. The entry point for the attack has been identified and closed, spokeswoman Molly Snyder said.