Skip to main content

Target has to pay $18.5M over that massive data breach

In 2013, hackers got into Target's system and stole info from millions of card users.

Remember Target's big data breach that happened during the 2013 holiday season? Well, the lawsuits over the massive hack – which affected 40 million credit and debit card users – have finally been settled.

According to Fortune, 47 states – including Minnesota – and Washington D.C. were involved in the settlement. And on Tuesday, attorneys general from around the U.S. released statements that a settlement had been reached.

As California Attorney General Xavier Becerra said, Target owes $18.5 million altogether.

"This should send a strong message to other companies: you are responsible for protecting your customers’ personal information," Becerra said. "Not just sometimes – always."

Target has issued a brief statement regarding the settlement.

"We’re pleased to bring this issue to a resolution for everyone involved," Target said, explaining it had been working closely with state attorneys general for the past few years.

States are all receiving different sums of money. California is getting the largest share with $1.4 million. New York is getting more than $635,000. Minnesota Attorney General Lori Swanson has not yet released a statement regarding how the settlement impacts Minnesota.

GoMN has reached out to Swanson's office for comment and will update this story when we hear back.

Preventing hacks

In addition to the payouts, Target also must adopt additional security measures to try to prevent something like this from happening again.

As the New York attorney general explained, the company must get an executive to look over a "a comprehensive information security program." And then hire a third-party company to assess its security.

Target also must implement and maintain encryption policies. That way if credit card information is ever stolen, it's jumbled enough that the hackers won't be able to use it.

The massive breach in 2013 took place between November and December. According to MPR, it involved more than 40 million customer payment cards, and exposed the contact information of at least 60 million shoppers.

An investigation found hackers were able to access Target's server and shopper data via credentials stolen by a third-party vendor.

MPR previously reported that 226,000 customers filed to get money back from Target. Target told Fortune the total cost of the whole data breach had been $202 million.

Next Up


22 dogs taken in by Animal Humane Society from shuttered breeder

The dogs were taken in after a report stated there were too many on a single property.


Latest on the 2 snowstorms set to impact Minnesota

The first arrives Thursday night into Friday before a bigger system comes next week.


Cop who pepper-sprayed downtown protesters received $150K payout

Samantha Belcourt said she "feared for her life."

Powerball Minnesota lottery

$1 million Powerball prize won in Twin Cities

The winning ticket was sold in Chanhassen for Wednesday's draw.

Screen Shot 2022-12-08 at 9.16.18 AM

Animales Barbeque Co. looks to open brick-and-mortar location

The popular food truck has partnered with the owner of Billy Sushi.

Christmas presents

Here are some 2022 holiday shipping deadlines to keep in mind

Most deadlines are a few days before Christmas Eve.


Minneapolis will waive pet adoption fees on Friday

Pet licensing fees still apply to adoptions at the event.


Family who endured car theft ordeal surprised with trip to Universal Orlando

A father rescued his four children after a thief jumped in his car while he was getting something from his trunk.


GameStop investigates possible credit card security breach

If you've shopped at in the last 7 months, keep an eye on your credit card bills.

Al Franken tears into former Equifax CEO over the data breach

Franken questioned the former CEO over the massive data breach.

MN lawyer charged with being part of a porn trolling scheme

Two lawyers are accused of threatening people with lawsuits to get money.

The Uber data breach: What you need to know

Personal information of 57 million Uber users was accessed.

Capital One announces massive data breach impacting 100M

The company estimates the breach affected around 100 million individuals.