The hackers that got into Home Depot’s computers didn’t only steal 56 million credit card details, the company has recently discovered that they also got away with 53 million email addresses. According to the retailer, no passwords were stolen along with the email ads, but it still wants to warn customers, in case they receive some phishing emails in their inbox. So, if you have Home Depot-loving family or friends who aren’t as tech-savvy, make sure remind them not to click on dubious links sent to their emails and to activate two-factor authentication when available.
Home Depot Inc. said hackers got into its systems last April by stealing a password from a vendor, opening a tiny hole that grew into the biggest retail-credit-card breach on record. On Thursday, the company announced the breach was worse than earlier thought. In addition to the 56 million credit-card accounts that were compromised, Home Depot now says around 53 million customer email addresses were stolen as well. Those addresses are by their nature semipublic, but they can be used by hackers hoping to trick people into giving away more sensitive information, and Home Depot warned its customers to be on guard. The findings—which come after more than two months of investigations by the company, law-enforcement agents and hundreds of security personnel—show the home-improvement retailer fell victim to the same type of infiltration tactics as Target Corp. , where hackers gained access last year via a Pennsylvania-based refrigeration contractor’s electronic billing account.
