The home improvement giant had to admit that hackers stole 53 million email addresses, aside from obtaining payment card information over a 5-month data breach earlier in 2014.
According to the world’s largest DIY home retailer, the hackers breached the Home Depot’s network using a vendor’s username and password. A couple of months ago, Home Depot admitted that 56 million credit and debit card numbers were compromised during a 5-month period of the hacker attack. According to the company, the stolen files with customers’ email addresses carried no passwords, payment card information or other sensitive personal data. However, customers in the United States and Canada were warned of possible phishing scams. The Atlanta-based company continues to notify the affected customers.
It said that the hackers stole data using malware installed on self-checkout systems in the United States and Canada. The retailer is currently working with cyber security experts, trying to enhance protections against future attacks.
It is known that Home Depot data leak became the latest in a series of other large-scale breaches on American companies. Target and JP Morgan also suffered, the former facing 40 million cards compromised, and the latter facing the attack ongoing for many months without the bank’s knowledge. The first breach in a series forced financial institutions, retailers and card companies to increase security by adopting the microchips in American credit and debit cards, which are supposed to be more secure. Home Depot promised to activate chip-enabled checkout terminals at all American stores by the end of 2014. The leak of personal details affected the finances of Home Depot. The company’s outlook for its fiscal 2014 includes estimates for the cost to investigate the accident and other expenses.