Target Corp. (Minneapolis) has confirmed that a security breach involving stolen credit card and debit card information has affected 40 million of its retail customers.
Target said criminals gained access to its customer information on November 27, the day before Thanksgiving and going into the Black Friday weekend. The retailer said online customers were not affected by the breach, which appears to have been isolated to the point-of-sale systems in Target’s retail stores.
Target said the cybercriminals had accessed customer names, credit or debit card numbers, expiration dates and three-digit security codes.
The U.S. Secret Service is working with a third-party forensics firm to investigate.