Home Depot 2014 BlackPOS Breach

To date, there is no evidence that any online HomeDepot.com shoppers, or customers making purchases at Home Depot stores located in Mexico were affected. Thus far, the Atlanta-based retailer has not released information that any debit card PINs, or user data were not affected. Customers seeking additional information are encouraged to call a toll-free number at 1-800-466-3337 [1].

The company joins the ranks as one of the latest payment card industry victims dealing with large-scale point-of-sale (POS) cyber information security attacks.

 

Management Reassures Customers

In a statement posted on the Home Depot corporate website, the management expresses it concern and assures customers that they will not be held responsible for any fraudulent activity affecting their credit cardaccounts. The retail giant is also extending an offer that includes complimentary identity protection services along with credit monitoring to all customers who shopped at Home Depot during the incident.

Customers will find a link on the Home Depot corporate site with information about identity protection and signup procedures for the free identity protection services [2].

Given the questions being raised by consumers with pending legal allegations stating that Home Depot's security measures were lacking and inadequate, two state Senators have stepped forward. On behalf of consumers, they have sent a letter to the FTC calling for an immediate investigation of security practices currently in place at Home Depot. The Senators also said that it is unacceptable for Home Depot to still be in a position where they are not able to completely shut down the cybersecurity breach.

When Home Depot management was asked to comment on the concerns raised by the two Senators, the company didn't immediately respond [3].

 

Record Breaking Breaches

This appears to be one of the largest breaches in history, possibly even larger than the Target breach from late last year. The malware known as BlackPOS is again responsible in this case as well [4]. It will be interesting to learn more details about this breach as the story unfolds.

 

References:

[1]http://hosted.ap.org/dynamic/stories/U/US_HOME_DEPOT_DATA_BREACH?SITE=WI...

(2]https://corporate.homedepot.com/MediaCenter/Pages/Statement1.aspx?cm_mmc...|THD|Test&mid=syNdpcEtb|dc_mtid_8903qmu25195_pcrid_46105304283_pkw_%2Bhome%20%2Bdepot%20%2Bbreach_pmt_b&gclid=CI-Lv4TU5MACFbTm7Aod_UsATA

[3] http://www.pcworld.com/article/2604940/senators-call-for-investigation-o...

[4] http://krebsonsecurity.com/2014/09/home-depot-hit-by-same-malware-as-tar...

Jacqueline von Ogden

Since 1999, Jacqueline has written for corporate communications, MarCom agencies, higher education, and worked within the pharmacy, steel and retail industries. Since joining the tech industry, she has found her "home".