Government continues to react to Target breach

Published 10:31 am Tuesday, February 25, 2014

Target’s data breach continues to draw scrutiny, with U.S. Attorney General Eric Holder on Monday endorsing a “strong national standard” for notifying consumers affected.

Holder also said Congress should include provisions to “hold compromised entities accountable when they fail to keep sensitive information safe.”

On Tuesday, legislators in the Minnesota House will convene a Commerce Committee hearing that will examine whether state law should be changed in the wake of data breaches at Target, Neiman Marcus and others.

Email newsletter signup

Executives at Minneapolis-based Target Corp. were invited to appear, but declined, citing the ongoing investigation into the theft of personal information on up to 110 million customers.

Instead, the House committee intends to discuss several proposals. One from Rep. Dan Schoen, DFL-St. Paul Park, would require notification to those affected within 48 hours, free credit monitoring and offer $100 gift cards to those affected, as well as repayment of any fees or charges as a consequence of the breach.

On Wednesday, Target will release its quarterly earnings, a period marked not only by the data breach, but also struggles in its Canadian stores, layoffs at its Minneapolis corporate headquarters and uneven holiday sales.

Separately, Target CEO Gregg Steinhafel on Monday wrote on the corporate blog about confusion over the number of Target customers affected by the data breach.

Initially Target disclosed it was up to 40 million, then up to 70 million were added. Target said there was some overlap between the two groups, but never provided other figures.

Nevertheless, Steinhafel lamented, “We knew many (media) reports would simply, and incorrectly, combine the 40 million and 70 million figures to arrive at 110 million total affected guests. And sure enough, many did….”

So if 110 million is an incorrect number, what is the correct one? Steinhafel didn’t say.