ATLANTA (December 27, 2013) Hackers obtained customers' encrypted PIN data during the data breach that affected about 40 million credit and debit cards used at Target Stores from late November until mid-December, the retailer said Friday.
The company issued a statement Friday that said that additional forensic work has shown that encrypted PIN data was removed along with customers' names and card numbers.
But Target said it believes the PINs are still safe because the information was strongly encrypted.
PINs can only be decrypted when received by independent payment processors, Target said.
A PIN number is the personal identification code used to make secure transactions on a credit or debit card.
Data connected to about 40 million credit and debit cards used at Target were stolen between Nov. 27 and Dec. 15.
Minneapolis-based Target says it is still in the early stages of investigating the breach.