The Wall Street Journal is reporting that a large number of stolen credit card numbers are showing up for sale, similar to the Target Hack earlier this year.
There are signs that the perpetrators of this apparent breach may be the same group of Russian and Ukrainian hackers responsible for the data breaches at Target, Sally Beauty and P.F. Chang’s, among others. The banks contacted by this reporter all purchased their customers’ cards from the same underground store – rescator[dot]cc — which on Sept. 2 moved two massive new batches of stolen cards onto the market.
The source of these stolen credit cards appears to be a security breach involving nearly all 2,000+ Home Depot Stores that went undiscovered since last April, according to security expert Brian Krebs: http://krebsonsecurity.com/2014/09/banks-credit-card-breach-at-home-depot/
Multiple banks say they are seeing evidence that Home Depot stores may be the source of a massive new batch of stolen credit and debit cards that went on sale this morning in the cybercrime underground. Home Depot says that it is working with banks and law enforcement agencies to investigate reports of suspicious activity.
Wondering how to protect yourself? The FTC Consumer Information site’s Credit Card Fraud page recommends the following:
- Save your receipts to compare with your statement.
- Open your bills promptly — or check them online often — and reconcile them with the purchases you’ve made.
- Report any questionable charges to the card issuer.
Call the card issuer as soon as you realize your card has been lost or stolen. Many companies have toll-free numbers and 24 hour service to deal with this. Once you report the loss or theft, the law says you have no additional responsibility for charges you didn’t make; in any case, your liability for each card lost or stolen is $50. If you suspect that the card was used fraudulently, you may have to sign a statement under oath that you didn’t make the purchases in question