In addition to the theft of credit card information it previously made public, the retail chain said hackers also stole names, mailing addresses, phone numbers, and email addresses.
Target said if the stolen data included an email address, it will try to contact the effected customer. In addition, customers can find the tips at Target.com/databreach, along with updated information at Data Breach FAQs.
"I know that it is frustrating for our guests to learn that this information was taken and we are sorry they are having to endure this," said Gregg Steinhafel, chairman, president and chief executive officer in a news release. "Our guests expect more from us and deserve better. And I want them to know that understanding and sharing the facts is important to me and the entire Target team."
Target said its customers will have zero liability for the cost of any fraudulent charges arising from the breach. It will offer one year of free credit monitoring and identity theft protection to all Target guests who shopped our U.S stores. Guests will have three months to enroll in the program. Additional details will be shared next week.
Target had announced in December that about 40 million credit and debit cards may have been affected by the data breach that happened between Nov. 27 and Dec. 15 - just as the holiday shopping season was getting into gear.