Report: Stolen Target credit card numbers hitting black market


At least some of the credit and debit card numbers that were comprised in a massive holiday shopping-season data breach are already being bought and sold on the black market, according to a security columnist.

“Credit and debit card accounts stolen in a recent data breach at retail giant Target have been flooding underground black markets in recent weeks, selling in batches of one million cards and going for anywhere from $20 to more than $100 per card,”, Brian Krebs, a former Washington Post reporter and cybercrime specialist who initially broke the data breach story, wrote in a lengthy update on his blog KrebsOnSecurity.org on Friday.

Krebs has been investigating the shady world of black market online "card shops" where thieves can sell stolen credit card data to other thieves who then create duplicate counterfeit cards.

Krebs writes that he has learned that bank fraud investigators have themselves gone undercover into the card shops and have been buying back stolen card numbers from their own customers. One thing the card numbers have in common: purchases made at Target from Nov. 27 and Dec. 15, Krebs writes.

Target Corp. confirmed the data breach Wednesday night, acknowledging that up to 40 million credit and debit cards of shoppers at stores nationwide were compromised between Nov. 27 and Dec. 15.

Target issued a new statement with updated information Friday. Target says:

– There have been very few reports of actual fraud since the breach.

– There is no indication that the thieves accessed PIN numbers from debit cards, card owner dates of birth, or the three- or four-digit numbers printed on the back of cards typically needed for purchases.

– Target customers will not be held liable for fraudulent purchases made as a result of the breach.

Target customers are trying to figure out what to do next – specifically, wondering whether they should cancel their cards.

Concerned customers overwhelmed Target's call centers, website and social media channels Thursday with inquiries. Many were unable to access Target REDcard accounts online or experienced long wait times over the phone.

The Star Tribune reports that one small institution, First Alliance Credit Union in Rochester, identified 859 of its 12,600 members as having used their cards at Target during the time in question, and now the credit union is seeking to replace all those customer cards, at a cost of roughly $5 a card.

Another Minnesota bank went as far as canceling the debit cards of 180 customers, KARE 11 reports. Wadena State Bank issued new cards to the customers whose records showed they used their cards at Target during the breach period.

Next Up

Maple Grove Police Department

Maple Grove-based businessman convicted of shooting wife to death

Wiseman owns properties in both Minnesota, Nevada and China.

betty and earls biscuits facebook

Jason Matheson's biscuit shop to briefly close ahead of relaunch

Betty & Earl's will shut down for two weeks before reopening under a new name.

Simon Merino Go Fund Me

Worker dies in forklift accident at paper recycling business

The victim was described as a loving father of two who was devoted to his church.

rosie means - go fund me

Authorities ID woman killed by hit-and-run driver who ran red light

A fundraiser was created to support the family after the "sudden and senseless loss."

Prior Lake Football

Watch: Prior Lake stuns Rosemount with last-second hook and ladder

The Lakers dusted off an old favorite to get a victory on Thursday night.

unsplas - maple leaf frost fall lawn

MN gets its first frost advisories, freeze warnings of the season

The coldest spots could dip to below 30 degrees overnight.


Ahead of Big Ten clash, Huskers fans spend their Friday mocking PJ Fleck

Huskers fans are in a playful mood ahead of Saturday's game.

Jamal Smith

New 1st-degree murder charge for man accused in youth coach's killing

A grand jury indicted the suspect in connection with the shooting of Jay Boughton.

trick or treating halloween

COVID: Mayo Clinic's tips for staying safe while trick-or-treating

A layered approach, especially for those who aren't vaccinated, is recommended.


'My patience level is gone': Walz calls on lawmakers to help hospital strain

The governor said only legislators can enact some of the needed measures.


Jeep driver dies after hitting two deer, rolling into oncoming vehicle

As the SUV rolled, it struck another vehicle approaching the other direction.

carver county dog

Family's dog 'senselessly' killed with arrow in Carver County

The beloved dog was shot with an arrow on Tuesday.