Home Depot on the Hook for $19.5 Million in Data Breach Settlement

by Techflier 1,015 views0

This week Home Depot agreed to a $19.5 million settlement, bringing one of the U.S. largest data breach cases to a close. The retail behemoth will compensate 40 million cardholders for a 2014 security compromise that resulted in 50 million credit card numbers and 53 million email addresses stolen.

The unknown attackers used compromised vendor credentials to access and penetrate Home Depot’s corporate network and retail point-of-sale (POS) system. Data breaches involving POS malware are on the risein this particular case, attackers deployed POS malware on self-checkout systems to surreptitiously intercept customer credit card numbers and other information.

Source: Mike Mozart / Flickr Creative Commons.
Source: Mike Mozart / Flickr Creative Commons.

Cyber attackers have been relentlessly targeting retail chain’s POS systems as of late. During the Target data breach in 2014, hackers were able to install RAM-scraping malware on POS systems and intercept customer card info.

Home Depot Headquarters. Source: Wikimedia Commons.
Home Depot Headquarters. Source: Wikimedia Commons.

As part of the settlement, the Home Depot admits no wrongdoing or liability in the breach, per court filings with the US District Court for the Northern District of Georgia. The settlement is compromised of over 57 consolidated class-action lawsuits filed against Home Depot in both US and Canadian courts.

 

Source(s):

Leave a Reply

Your email address will not be published.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>