Hacker News is reporting that the attackers who breached JCPennney and Twitter were the same group that breached Target and PayPal in 2016.
In a tweet this morning, JCPensney said that it had notified law enforcement and was investigating the attack.
The hackers took credit cards, debit cards, gift cards, and other sensitive information from a number of accounts, and used those cards to buy merchandise at retailers, including Walmart, Walmart.com, Target, Amazon, and Best Buy.
The stolen information was used to purchase items ranging from apparel to accessories, but Target was hit hardest, and PayPal was the only other retailer affected.
The attackers targeted Target because they were unaware that Target had been hacked, and Target has been working closely with law enforcement to help track down the criminals responsible.
Target also announced that it was working with the Federal Trade Commission to help the company combat cyberattacks.
As part of its investigation, Target and JCPenedney are sharing the information they have acquired with law-enforcement and the public.
Target said it had also reached out to retailers to offer additional security measures, and Jepsenney has begun to roll out a new security feature.
Target has also announced it will offer free credit monitoring for consumers, and the company will offer a “Target for Life” program, in which customers can get a full refund for their purchases, and access to its credit monitoring services for six months.
Target’s Chief Financial Officer Mark Mahoney told reporters at a press conference today that he expects the company to be reimbursed for the stolen credit card data.
“I’m going to tell you this: It’s just a matter of time before we are reimbursed,” he said.
Target says it’s working with law enforceives to help trace the perpetrators and has also asked consumers to keep their credit card information protected for as long as possible.
JCPenters CEO Dan Lyons and President of Operations David Farr have both issued statements addressing the attack and how they plan to address the issue in the future.
“This was an attack against our network, and we’re working hard to make sure it never happens again,” Lyons said in a statement.
“We’re offering a few security measures and we will provide further updates as we understand them.
Target is working with our law enforcement partners to identify the hackers who compromised our network and to take steps to prevent this from happening again.
We’ll continue to provide the most thorough and timely information and updates we can as we determine how best to mitigate the threat.”
JCPenterneys new credit monitoring feature was announced last month, and has already begun to be rolled out to customers.
Target and Target have also issued statements detailing the steps they are taking to mitigate any future threats.
“Target is committed to a robust security process, and today we launched a new credit card monitoring feature that will provide customers with access to a credit report and monitoring for six weeks.
Target will also continue to monitor our customers for unauthorized purchases and use these data to help identify potential fraud and make improvements to the way our network functions,” they said.
“While we do not believe we have identified any malicious actors who may be responsible for this attack, we are working closely to help our customers protect themselves.”
Jepson’s spokesperson said in an email that the company is aware of the breach, and that the thieves were part of the same hacktivist group that targeted Target and Walmart in 2016, as well as PayPal.
“In an effort to protect our customers, Target is providing a free credit report for all Target customers, and this credit monitoring service will continue for six more weeks,” the statement read.
“For more information about the ongoing Target security efforts, go to www.
Target will continue to work with law enforcers to help determine the criminals behind the attack, and they will also be reaching out to its customers to help them protect themselves against similar attacks.
“Today’s incident is not isolated, and it’s not isolated to a single, isolated group,” Lyons told reporters.
“There are criminals and rogue hackers everywhere and there are going to be cyberattacks on every platform that exists, and everyone has to take responsibility for themselves.”
Target is offering free credit reporting to customers until July 30, and is also launching a new online security service that will offer customers the ability to monitor their credit report.
“If you feel like you are the victim of a cyberattack, contact your credit reporting company today to let them know what information they might be able to help you with.
If you are still not sure, you can call 1-800-835-8111,” Target said.
Jepens CEO said the company would continue to offer its own security updates, but it also would work with banks to help mitigate the risk posed by cyberattacks, including making their data more secure.
“JCPenneys commitment to a rigorous security process is reflected in our commitment to providing a comprehensive credit monitoring