Under various state laws, companies that hold personal private information have a responsibility to notify people when that information is no longer in their control.

Some are statutory periods of time, like 60 days. Others are more nebulous. ("As soon as possible reasonably practicable.")

The longer they wait to report, the more liable to make themselves under the laws.

Fresh fruit? That's some pretty fucking expensive bananas.

How much to put a piece of fruit into orbit?

I mean, I could wait a month to have an apple if I was an astronaut.

That's cause they shopped online. They NEVER deliver by the Christmas deadline when you shop online.

Is this why my lights are off? Got an email that said unless I forked over some serious Bitcoin, my X10 system would be hacked.

That and the coffee maker won't turn on, the lights are out and the TV ... damn, just a blown fuse.

Never mind.

That's pretty funny. I really have to read the subtitles under the subject lines on \.

High-sterical. Literal LOL.

You may well be correct and I should not have conjectured. Truly, I have never run Hadoop or any relational data set of any size. Maybe it's something that wouldn't make a dent in bandwidth or come up on some sys admin's radar.

It is indeed more the question that the data wasn't properly secured that allowed for the loss.

That's a lot of data, though....

Web site overdue for an update? Guilty. On my to do list for years [and probably years from now].

Krebs On Security [http://krebsonsecurity.com/2013/12/sources-target-investigating-data-breach/] says Target was informed of the breach by Visa and Master Card. Target wouldn't have caught it as soon as they did unless they were told.

Negligent? Er, uh, yup.

But banks and credit card companies don't sue vendors, their customers. If they did, they would lose customers. Thus, they eat the losses.

It's the person who just got $900 from their debit card spent fraudulently online that spends hours upon hours plugging the holes and righting the wrongs.

[See? Lousy HTML skills. Sorry.]

In the period of time between Black Friday and Dec. 17, when Target says this all went down, if they were open 12 hours a day, that's one card every 3 seconds.

Oh, wait. that was when they claimed it was 40 million names.

No way this was real time. Target must have been data mining.

I'm a plaintiff's attorney and I filed before Christmas. Lots of other firms out there with lots of other cases.

Target should have had at least had one sys admin to see that kind of data bump crossing their network while the breach occurred. They advertise for techs that can use Hadoop. They have to understand something about data and bandwidth with 100 million names in a database.

With that amount of data crossing the servers, shouldn't someone seen something?

There's more. Write me if you want info about mine or other cases. target at paulwhalen dot com

[nothing within this post shall be considered a legal opinion, solicitation or attorney advertising]

I call shotgun seat.

Modded down as off-topic. Yet +5 insightful to those complaining after me. Welcome to /., baby.

Point taken. Lesson learned. Not all material Slashdot editors like is worth a damn.

That slow a news day that we post this? 7 minutes of my life wasted watching this video that I will never get back.

... you've got an audience of 500 exactly like you in China. Guaranteed.