It has been revealed that the details of at least 45.7 million credit and debit cards were stolen by hackers who got into the computer records of discount clothing retailer TJX. Customers of the company – which has 2,500 shops in North America and 210 in the UK and Ireland were not happy.
One shopper said: “I don’t feel secure at all about shopping at TJ Maxx with credit any more. Cash only.” Another gave the opinion: “It’s not worth it. You save a little but the risk is way too high.” The company records were accessed for four years until last December, but that was only discovered recently.
Mark Rasch, a former investor with the US Cybercrime prosecutor’s office, says the thieves could have had inside help or TJX’s security was very lax: “The bad guys got in and owned them. They had their encrypted data. They had almost all their credit card data, and it is hard to believe they could have done that if the somebody hadn’t messed up at TJX.”
The search goes on for the criminals. So far just a handful of people have been arrested. They are suspected of buying credit and debit card information from the hackers to steal from Wal-Mart in Florida. Experts said the disclosures by TJX revealed major security failings still persist at firms that are entrusted with consumer data.