Risks to sensitive data have never been greater. With the rise in cyber attacks and data breaches, outsourcing to third parties can present an exponential threat to corporations. New regulations, technologies, standards, and security threats require organizations to implement robust vendor oversight to meet and stay ahead of the latest risks and challenges from new… Continue Reading
Tag Archives: Target
Privacy Monday – July 13, 2015
Posted in Cybersecurity, Data Breach, Events and Webinars, Privacy MondayWelcome to the dog days of summer 2015. Three privacy & security bits and bytes to start your week (if you are reading this on vacation … good for you!) 1. ICYMI: Massive Data Breach at OPM Claims Victim — The Director One day after Office of Personnel Management Director Katherine Archuleta broke the news… Continue Reading
Failure to Obtain Required Retailer Approval Scuttles Target-MasterCard Data Breach Settlement
Posted in Class Action Litigation, Data Breach, Privacy LitigationTarget’s attempt to resolve claims of MasterCard-issuing banks through a $19 million private settlement with MasterCard has been terminated for failure of issuers of 90% of the affected cards to accept the settlement by the Wednesday, May 20 acceptance deadline. Press reports on Friday, May 22 indicated that both Target and MasterCard had confirmed that… Continue Reading
UPDATE: Target Confirms It Has Negotiated A $19 Million Data Breach Settlement With MasterCard
Posted in Class Action Litigation, Data Breach, Privacy LitigationTarget confirmed a report in the Wednesday edition of The Wall Street Journal of a settlement with MasterCard concerning claims of card-issuers arising from Target’s 2013 data breach. The data breach, which occurred during the post-Thanksgiving holiday shopping season, compromised over 40 million credit and debit cards used to make purchases at Target stores. The… Continue Reading
Report: Target Close To $20M Data Breach Settlement With Master Card
Posted in Class Action Litigation, Data Breach, Privacy LitigationAccording to a report published today in The Wall Street Journal, Target and MasterCard are close to reaching a settlement of the claims of MasterCard-issuing institutions in connection with Target’s 2013 data breach. The settlement would reimburse the cost of reissuing debit and credit cards compromised by the breach, as well as a portion of… Continue Reading
Precedent and the Price Explain Why Target and the Consumer Class Agreed to an Early Data Breach Settlement
Posted in Class Action Litigation, Data Breach, Data Breach Notification, Privacy Litigation, UncategorizedOn March 18, 2015 – just three months after denial of a motion to dismiss consumer claims arising from Target’s 2013 data breach – Target and the consumer class filed papers seeking approval of a settlement. The proposed settlement agreement creates a $10 million cash fund to be paid out to class members claiming actual damages arising from… Continue Reading
Target Data Breach Price Tag: $252 Million and Counting
Posted in Class Action Litigation, Cybersecurity, Data Breach, Data Breach Notification, Privacy LitigationIn a recently-released Form 8-K filing announcing fourth quarter and year-end financial results, Target Corporation reported that expenses incurred in 2014 relating to its 2013 data breach totaled over $191 million. Those expenses were offset by $46 million in insurance proceeds, resulting in a $145 million charge against Target’s 2014 operating results. The expenses incurred… Continue Reading
Consumer Claims Survive Motion to Dismiss in Target Data Breach Class Action
Posted in Class Action Litigation, Data Breach, Privacy LitigationWritten by Kevin McGinty A recent ruling by Federal District Judge Paul Magnuson will permit most of the consumer claims in the Target data breach litigation to survive Target’s motion to dismiss. This most recent ruling follows on the heels of the court’s December 2 decision partially denying Target’s motion to dismiss consolidated complaint of… Continue Reading
Privacy Monday – September 22, 2014
Posted in Cybersecurity, Data Breach, HIPAA/HITECH, Privacy MondayHappy autumnal equinox — http://www.skyandtelescope.com/astronomy-news/observing-news/autumnal-equinox-2014-arrives-09222014/ Home Depot Breach – By the Numbers 56 million cards at risk (compare to Target = 40 million) $62 million in estimated costs (compare to Target =$146 million and counting) $27 million insurance coverage (compare to Target = $100 million in cover) Lawsuits filed – at least 1 in US and… Continue Reading
“Backoff” Update — More Widespread, PCI Council Issues Call to Action — If You Accept Credit Cards Via Point-of-Sale, You Need to Read This
Posted in Data Breach, Data Breach Notification, SecurityWritten by Cynthia Larose Some weeks ago, we wrote a piece “What You Need to Know About Backoff Malware: The New Threat Targeting Retailers” . It’s apparently gotten worse. Any business utilizing point-of-sale (POS) terminals for “swiping” credit cards needs to pay attention to this threat and assess vulnerability. Hospitals, physicians’ offices, veterinary clinics, colleges… Continue Reading
Minnesota Proposes Expansive Amendment to Data Breach Notification Law
Posted in Data Breach, Data Breach Notification, LegislationTwo days ago, we heard that Target Corporation has brought in an information security heavy hitter to oversee the company’s post-breach data security and technology operations. Now we learn that its home base of operations, Minnesota, is the latest state to propose a legislative reaction to the Target data breach. The Minnesota legislature has introduced an… Continue Reading
Aggressive Liability Theory Does Not Eliminate Obstacles To Banks’ Claims In Target Data Breach Class Action
Posted in Class Action Litigation, Data Breach, Privacy LitigationWritten by Kevin McGinty The latest salvo in the Target data breach litigation is a class action brought by credit card issuing banks advancing a creative and somewhat misleading construction of the Minnesota’s Plastic Card Security Act. The banks allege that there was a violation of the statute’s prohibition on retaining PIN, security code and… Continue Reading
Banks Withdraw Lawsuits Against Target and Trustwave
Posted in UncategorizedUPDATE to our story yesterday: In what apparently is a big “oops,” two banks that took legal action against Target over its recent data breach have withdrawn their claims. The suits were withdrawn due to an erroneous allegation against Trustwave, a security vendor also named in the suit. Green Bank of Houston filed a notice of dismissal Monday… Continue Reading
The Target Breach Update
Posted in Cybersecurity, Data BreachIt has been difficult to keep up with all the various permutations of the Target data breach saga. Yesterday, the finger-pointing continued in the form of the release of a Harris Poll and testimony on Capitol Hill at a U.S. Senate hearing.
Risky Business: Target Discloses Data Breach and New Risk Factors in 8-K Filing… Kind Of
Posted in Data Breach, Data Breach Notification, Privacy RegulationWritten by Adam Veness After Target Corporation’s (NYSE: TGT) net earnings dropped 46% in its fourth quarter compared to the same period last year, Target finally answered the 441 million dollar question – To 8-K, or not to 8-K? Target filed its much anticipated Current Report on Form 8-K on February 26th, just over two… Continue Reading
New Payment Card Technology Finally Coming to US? Target Takes the Lead
Posted in Data BreachWritten by Adam Veness In the wake of the recent massive data breaches suffered by Target and Neiman Marcus, many banks and retailers have renewed the call for a change in the way that consumers in the United States pay for goods and services. Credit and debit cards in the United States generally use magnetic… Continue Reading
To 8-K, or not to 8-K? For Target, that is indeed the question.
Posted in Data Breach, Data Breach NotificationWritten by Adam Veness and Cynthia Larose As anyone with a pulse and a computer, television or carrier pigeon knows, Target Corporation (NYSE: TGT) suffered a major data breach in December – the extent of which is still being uncovered – and pegs the latest number of customers that have had their personal information stolen anywhere… Continue Reading
The Number of The Day: 70 Million (at least)
Posted in Data Breach, Data Breach NotificationThe Target data breach story keeps getting worse. The December pre-Christmas disclosure was the theft of up to 40 million Target shoppers’ credit and debit card information in what appeared to have been a hack of the Target point-of-sale system that allowed the thieves to swipe magnetic card data as customers checked out. … Continue Reading
On the 11th Day of Privacy, class counsel served on me……
Posted in Class Action Litigation, Data Breach. . . a data breach class action. Hackers and plaintiffs’ lawyers could combine to make 2014 the year when class actions concerning theft of sensitive information proliferate. On this 11th Day of Privacy, we look ahead at the prospects for privacy class actions in the coming year. Written by Kevin McGinty When asked why he robbed banks,… Continue Reading