Target now says 70 million customers may have had data stolen in the credit and debit card hack that occurred at the beginning of the holiday shopping season, almost double the amount of shoppers originally reported.
According to a statement released by Target on Friday, the data breach that occurred between November 17 and December 15 affected many more customers than previously thought. Previous reports estimated the breach impacted around 40 million customers.
The investigation also discovered that customer email addresses, phone numbers, names, and mailing addresses were also stolen from their systems, on top of the hacks on credit and debit card data that had been previously reported.
The company said that in most cases only parts of customer personal information was uncovered, and they are attempting to contact individuals whose entire email addresses were released.
“I know that it is frustrating for our guests to learn that this information was taken and we are truly sorry they are having to endure this,” said Gregg Steinhafel, chairman, president and chief executive officer, Target in a statement. “I also want our guests to know that understanding and sharing the facts related to this incident is important to me and the entire Target team.”
Target is offering a year of free credit monitoring and identity theft protection for U.S. customers.
More Must-Reads from TIME
- L.A. Fires Show Reality of 1.5°C of Warming
- How Canada Fell Out of Love With Trudeau
- Trump Is Treating the Globe Like a Monopoly Board
- Bad Bunny On Heartbreak and New Album
- 10 Boundaries Therapists Want You to Set in the New Year
- The Motivational Trick That Makes You Exercise Harder
- Nicole Kidman Is a Pure Pleasure to Watch in Babygirl
- Column: Jimmy Carter’s Global Legacy Was Moral Clarity
Contact us at letters@time.com