Brian Krebs' post which broke the story: <a href="http://krebsonsecurity.com/2014/09/banks-credit-card-breach-at-home-depot/" rel="nofollow">http://krebsonsecurity.com/2014/09/banks-credit-card-breach-...</a>
One interesting thing I've noticed as a home depot customer is they don't require you to have a receipt for returns, as they can access all previous transactions based on your credit card number (... and therefore presumably have a centralized database which maintains a record of any credit card used at a home depot, hopefully in some hashed/encrypted format)
I don't have anything insightful to say. I'm just really sick of this crap and wish that US banks and retailers had incentives that would lead to smart-card adoption.
Further details
<a href="http://www.reuters.com/article/2014/09/02/us-home-depot-customer-data-idUSKBN0GX2AQ20140902" rel="nofollow">http://www.reuters.com/article/2014/09/02/us-home-depot-cust...</a>
Would a chip + pin approach not make it substantially more difficult to pull off these kinds of attacks? I ask because I don't know the particulars of how Home Depot (ot previously Target) were said to be compromised.