Date: Thu, 04 Sep 2014 18:58:04 -0400
From: mark <whitroth@5-cent.us>
To: undisclosed-recipients:;
Subject: [WSFA] Home Depot credit/debit card breach - GET A NEW CARD
Reply-To: WSFA members <WSFAlist@KeithLynch.net>

Excerpt:
In all, there were 1,822 ZIP codes represented in the card data for sale
on Rescator\342\200\231s site, and 1,939 unique ZIPs corresponding to Home Depot
store locations (while Home Depot says it has ~2,200 stores, it is safe to
assume that some ZIP codes have more than one Home Depot store). Between
those two lists of ZIP codes, there are 10 ZIP codes in Rescator\342\200\231s card
data that do not correspond to actual Home Depot stores.

Finally, there were 127 ZIP codes for Home Depot stores that were not in
the list of ZIPs represented in Rescator\342\200\231s card data. However, it\342\200\231s
important to note that the data pulled from Rescator\342\200\231s site is almost
certainly a tiny fraction of the cards that his shop will put up for sale
in the coming days and weeks.

What does all this mean? Well, assuming Home Depot does confirm a breach,
it could give us one way to determine the likely size of this breach. The
banks I spoke with in reporting this story say the data they\342\200\231re looking at
suggests that the breach probably started in late April or early May. To
put that in perspective, the Target breach impacted just shy of 1,800
stores, lasted for approximately three weeks, and resulted in the theft of
roughly 40 million debit and credit card numbers. If a breach at Home
Depot is confirmed, and if this analysis is correct, this breach could be
much, much bigger than Target.
--- end excerpt ---

<http://krebsonsecurity.com/wp-content/uploads/2014/09/hd_rescator_zips.txt>

So, ESPECIALLY if you've used a debit card at Home Despot this spring or
summer, call your bank NOW and get a new card with a new number. I just
(literally) got off the phone with mine, and until I get the new one, in a
week or 10 days, I can't use my debit card... but at least I know that I
won't be cleaned out. I can't afford that.

         mark