New Target disclosures spur calls for congressional action

Target has made new disclosures about detailed personal information stolen in its holiday shopping season hack, which is raising alarms in Congress.
 
The retail giant announced on Friday that names, mailing address, phone numbers or email addresses had been stolen from as many as 70 million people in the data breach, which occurred from Nov. 27 to Dec. 15. Previously, the retailer had reported that information about roughly 40 million credit and debt cards had been compromised in the hack.
 
Lawmakers from both sides of the aisle were quick to call for congressional and regulatory action to protect customers in the wake of the new disclosure.
 
Sen. Richard Blumenthal (D-Conn.) has urged for the Federal Trade Commission (FTC) to launch an investigation into Target’s data security, and he repeated that call on Friday.
 

ADVERTISEMENT
“I think they need to publicly confirm that there is an investigation, because consumers have been left in the dark and the cold when it comes to protection against identity theft and fraud from this massive disclosure,” he told The Hill.
 
He added that he would work on legislation to require notifications after data breaches and upgraded security technology.
 
“I think this issue is undeniable in its urgency, given the spate of recent breaches and hackings and other improper disclosures of information. And there’s a need for more proactive and preventive action.”
 
Sen. Edward MarkeyEdward (Ed) John MarkeySenate Democrats introduce bill to block Trump's refugee ban FCC votes to limit program funding internet access for low-income communities Two GOP senators oppose Trump’s EPA chemical safety nominee MORE (D-Mass.) called for congressional action after the first revelations about Target’s data loss and reiterated his concern in light of Friday’s revelations.
 
“When a number equal to nearly one-fourth of America’s population is affected by a data breach, it is a serious concern that must be addressed. These findings only underscore the need for retailers across industries to make their security safeguards iron-clad to ward off hackers prowling for Americans’ personal information,” he said in a statement.
 
Target said that it learned that the additional personal information was stolen as part of its continuing investigation into the data breach.
 
“I know that it is frustrating for our guests to learn that this information was taken, and we are truly sorry they are having to endure this,” President and Chief Executive Gregg Steinhafel said in a statement. “I also want our guests to know that understanding and sharing the facts related to this incident is important to me and the entire Target team."
 
In response to the disclosure, the company is offering a free year of credit monitoring and identity theft protection to all customers who shopped at U.S. stores. Patrons have three months to enroll in the program, Target said.
 
Sen. Deb FischerDebra (Deb) Strobel FischerOvernight Health Care: Mandate repeal sparks fears of premium hikes | HHS nominee to get Senate hearing this month | Trump officials eye work requirements for Medicaid recipients Overnight Regulation: Senators unveil bipartisan gun background check bill | FCC rolls back media regs | Family leave credit added to tax bill | Senate confirms banking watchdog Family leave tax credit added to latest GOP tax bill MORE (R-Neb.) wrote to the leaders of the Senate Commerce Committee, on which she sits, asking for the panel to explore the possibility of a new data security law.
 
In addition to the Target hack, she also cited a recent data breach at the mobile application Snapchat. Those incidents, she wrote, are a sign that “our nation’s entire data security framework is in desperate need of revamping.”
 
“That will require congressional action and attention from our committee,” she wrote. “I encourage you to schedule hearings as soon as possible so we can minimize the impact these data breaches are having on consumers and our economy.”
 
Earlier this week, Senate Judiciary Committee Chairman Patrick LeahyPatrick Joseph LeahyLawmakers, celebs honor Tony Bennett with Library of Congress Gershwin Prize Dem senator jokes: 'Moment of weakness' led me to share photo comparing Trump, Obama Leahy presses Trump court nominee over LGBTQ tweets MORE (D-Vt.) cited the breach when he reintroduced his data privacy legislation. Leahy said that his committee will hold a hearing on the issue early this year.