Target announced today that the 40 million customers who have had their credit and debit card data swiped from Target’s servers aren’t the only people who have something to worry about. From Target’s corporate site:
As part of Target’s ongoing forensic investigation, it has been determined that certain guest information—separate from the payment card data previously disclosed—was taken from Target. This theft is not a new breach, but was uncovered as part of the ongoing investigation. At this time, the investigation has determined that the stolen information includes names, mailing addresses, phone numbers or email addresses for up to 70 million individuals.
Remember that time I said that this whole situation didn’t make me believe that Target was capable of protecting its customer’s information in the slightest? Well, this doesn’t help in the slightest. And while Target will be offering a year of credit monitoring and identity theft protection for its customers after this mess, the fact that it has been a month after the original announcement and these services still haven’t gone live brings my confidence level in Target to an all-time low. So that’s fun.