UPDATED: Home Depot Confirms Breach that Began in April, No PINS Compromised
Home Depot confirmed early this week that the company experienced a data breach that reaches back to April.
The breach affects customers who made in-store purchases, but does not seem to affect those who shopped online. While the investigation is ongoing, Home Depot officials do not believe that any personal identification numbers (PIN) have been compromised. The company is offering free credit monitoring services to any customer who made a purchase with a credit card since April.
Home Depot announced on Sept. 2 it was investigating the possibility of a breach after security blogger Brian Krebs broke the story.
According to a report on the >New York Times' technology blog, this breach could possibly be the largest yet, outdoing Target which had 40 million credit and debit cards stolen. The Home Depot breach could top 60 million. The Home Depot breach went on for about five months, whereas Target caught the problem after only three weeks.
Krebs speculated that the breach is connected to the same group of Russian and Ukrainian hackers responsible for Target breach as well as those at Sally Beauty Supply and P.F. Chang's.
It is possible the breaches were in retaliation for a series of sanctions issued by the U.S. and European Union. One batch was aptly named American Sanctions while the other was named European Sanctions.
To learn more about the identity protection services Home Depot is offering, customers can visit homedepot.com or call 1-800-466-3337.