Latest credit breaches: Kmart and Dairy Queen

[thewayne]

Sears Holdings just announced it, no indication as to how many cards or a date range but they are saying that no cards are yet being used fraudulently. We'll see how long that holds true. They're also saying only Track 2 data was compromised, so no personal identity info stolen that could promote ID theft, just simple credit theft. It was a point of sale hack, so either the same group that did Target/Michaels/Home Depot/etc or someone using the same malware package.

The Dairy Queen breach was suspected in August but only now confirmed, no indications how long or how many cards were compromised. This one was a cash register compromise, so probably a different batch of crooks.

I just had my card replaced because of the Home Depot hack, we use Kmart as my wife's pharmacy and both of us have used our cards there. So if our cards ever stop working, now we know why, and at least it's a good thing that our bank is actually being preemptive.

http://krebsonsecurity.com/2014/10/malware-based-credit-card-breach-at-kmart/

Comments

[thewayne.livejournal.com]

I think we'll definitely be seeing more of this for the next 18 months, until the mandated USA chip & pin get a chance to settle in. I think we'll also see more people switching to cash transactions, which will mean more profit for retailers and will also make banks higher value targets to try and slip in to the ATM networks, so we'll find out how good their security is. And as Chase just got taken for some 40 million accounts, I think we know the answer to that.

[silveradept]

Yeah. There's something to be said about how all these measures and protection elements seem to just shift focus instead of actually reducing the amount of crime and its possible payouts.