Last Sunday’s 60 minutes had a report by Lesley Stahl about the now-infamous TJX data breach.
When TJX revealed earlier this year that they’d failed to keep safe over 45 million customer credit card accounts, they were hit with both consumer and bank class action lawsuits. Now they’ve submitted a proposed settlement for the consumer class action suit that includes a strange, somewhat insulting offer: a “one-day sale” for victims of the theft. Attorneys general from eight states have filed an objection against the proposal, citing that even if it’s a well-intentioned goodwill gesture, it doesn’t belong as part of any official, legal settlement, which should be designed to benefit the victims rather than the retailer.
According to new court papers, Visa and Mastercard are saying that the TJ Maxx security breach actually affected 94 million accounts—more than double the amount that TJ Maxx reported.
Mouseprint.org has read the fine print and they say you’re probably out of luck when it comes to the TJ Maxx Settlement:
So, it is primarily shoppers who returned goods without a receipt during the relevant period who qualify for that part of the settlement. That amounts to some 455,000 people, a mere 1% of the total number possibly affected. These people have already received a direct notification of the breach from TJX, and will also be entitled to other compensation if they experienced actual losses.
The announcement did not specify the settlement cost, but noted that its estimated costs were included in a $107 million reserve included in its second-quarter report for fiscal 2008 and its estimate of $21 million in costs expected in fiscal 2009. The $107 million figure includes costs from other lawsuits not included in the customer class actions, the Framingham-based company said.
The infamous TJ Maxx data breach cut parent company TJX’s profits by more than half. The total bill for the breach? $256 million. [Boston Globe]
The Wall Street Journal is reporting that the most likely scenario for how the hackers stole an estimated 200 million card numbers is as simple as a person with a laptop breaking into the wifi network of a store:
The biggest known theft of credit-card numbers in history began two summers ago outside a Marshalls discount clothing store near St. Paul, Minn.
TJX, the parent company of TJ Maxx and Marshall’s, is facing a class action lawsuit from the 45 million customers whose credit card data they lost; now, bankers associations representing 300 banks in Maine, Connecticut and Massachusetts have decided to file a class action suit of their own. From InfoWorld:
Banks — especially in states like Massachusetts — were also hard hit. Why? Because under current federal law, its banks, not merchants, who have to pay to make customers whole again: forgiving fraudulent purchases on credit and debit cards and, of course, cancelling compromised cards and bank accounts, then issuing new ones to their customers. Needless to say, that’s an expensive process, especially when you’ve got to repeat it 45 million times, as banks across the country will have to do in the wake of TJX. Not surprise, then, that banks aren’t taking this sitting down.
Banks are in the process of notifying consumers, some who did not think they were affected, that they will soon receive new debit and credit cards in the mail. — CAREY GREENBERG-BERGER
• Amazon: Factory-Reconditioned DEWALT DW988K-2R 18-Volt XRP 1/2-Inch drill/driver/hammerdrill kit for $129.99 with free shipping (down from $522)
TJMaxx computer system intruders who stole 45.7 million credit cards siphoned off customer data using a program they implanted on the company’s servers, recent regulatory filings reveal.
45.7 million credit cards were stolen in recently disclosed security breaches at TJMaxx, regulatory filings revealed yesterday.
Stolen TJX data has been linked to 6 arrests in the Miami area. According to the AP, the ID thieves exploited a Walmart gift card loophole that allowed them to buy multiple $400 gift cards without showing ID, which they would then redeem or sell.
“TJX Cos. said today that the unauthorized intrusion into its computer system occurred nearly a year earlier than it previously believed.
Massachusetts and Rhode Island are opening probes into T.J. Maxx after the retailer lost millions of consumer’s credit cards in a recent breach.
On Monday, a Pier 1 spokesman said in a statement the company was trying to stop TJX from interfering with Smith’s new employment agreement. Such threats were “improper,” said spokesman Tom Thomas, because the two companies are not competitors.
A class action lawsuit was filed yesterday against TJ Maxx for allowing millions of customer’s credit cards to be stolen in a Jan. 17. security breach.
In mid-December, someone cracked into TJ Maxx’s computer system and stole a huge swath of credit cards.