Sherry Lang of TKMAXX is quoted as saying,"We have identified two [computer] files that were removed from our UK system but we still do not know precisely what was in them".

I simply can not believe that statement. I am sure that for their own benefit they would have kept back up copies of all files, and the data they claim is missing could easily be recovered therefore.

What action are they taking/recommending to the customers whose details have been illegally disclosed? Saying that the data has been stolen is one thing, but that does not absolve TKMAXX from their responsibilities to safeguard the data and I therefore assume that before long the ambulance chasing legal brigade will soon be actively engaged.

John Hazard, Arddleen , Wales

Do what I do and check your account every day. It takes seconds and if anything has been added that you did not do you can move on it in a hurry by contacting your card provider. If everyone kept on top of their accounts the fraud would be uncovered very quickly. I know that will not stop it all but it will flush out the ones where repeated charges are made over days and weeks because someone does not know its happening till weeks after the action. Then, when the thief goes to try it again the store or vender can pin point the person using it.

Keith Manton, houston, usa

Now I remember why I still use cash and the soon to-be-extinct money order.

To those of you good people who may be caught out dry because of this security breach, I hope your insurance policy doesn't have too much small print...

Cash Cow, London, UK

The headline on this article should read "Banks caught in credit card heist". Just look at your statement when you get it, and if you didn't spend it, query the charge.

If you can show me one individual who reads their bank and cc statements who loses out as a result of this, then I might care.

My cc's have be used for fraud a number of times in the 10 years I've had one(I use them everywhere) and I've never had to pay any of the fraudulent transactions.

flipside, London, UK

Although neither I am Briton or US citizen or an affected customer, but one thing is for sure, if the CC fraud is at such massive scale and that too in highly security conscious states, think about the situation in developing or third worlds. In south Asia, credit cards are new concept still and most of the people don't know how to protect their identity. It's time that security feature in cards must be changed. Something that may allow transaction but credit/debit card number must not be visible to shop owner / seller.

skjha, Mumbai, India

Interesting that there were press releases by the Company on 17 January and 21 February, that received NO publicity in the UK.

Perhaps it is only now that the Banks are identifying ACTUAL problems with UK credit card accounts?

I shall not be surprised to hear of this having happened within the next few days.

Surely it couldn't be that the 'power' of the TKMAXX advertising budget made the media 'reluctant' to use these two Press Releases?

I always have a suspicious mind, I am told ....

Martin Godfray, Edinburgh, Midlothian

And next in line is the ID Card database. Never mind copying your credit card - there will be several clones of YOU!

Steve, Ruislip, UK

Just to unconfuse a pile of confusing posts - the credit card details were taken from a central database. This database holds details from the stores, and probably details from on-line as well.

For people in the industry, I am sure many would like to know what make of database they use (Oracle, MS, MySQL?) and what type of encryption they were using so that they can all tighten up security.

Mind you, many companies (including TJX who own TK Maxx) have more recently been masking portions or credit card numbers and pins. (TJX since 2006). But one has to wonder whether companies should keep credit card information at all once a transaction has been processed.

More background can be found here: http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9008418

Joss, Stony Stratford, UK

What are these companies doing storing credit and debit card information for single transactions through stores. I was unaware that stores kept my debit card details once the transaction had been completed. I have not to my knowledge been asked for my permission for companies to keep my tansaction and or card details?

Deborah Kirkup, Longridge, Lancashire, UK

So the press and politicians demonise 'benefit fraudsters', and 'illegal immigrants' for draining our ecomony. These are the people that the average racist down the pub wants to see locked up or kicked out of the country.

But suit-wearing fat cats are costing the country 30 times as much money, and get away with it because it is 'low visibility'? And on the few occasions they are caught they tend to receive extremely light sentences, rarely if ever going to prison.

Is it not the job of our politicians, police and judiciary to protect the interests of our nation, rather than collude in demonising the vulnerable in order to gain political currency? A shocking example of where the priorities of governement lie in the age of spin.

Zac, Sheffield,

The first breach took place in 2005 and the details refer to purchases having taken place from December 2002. What is the basis for companies to be able to keep credit card details for over 2 years?

Simon Cussonay, Taurel - Eure, France

Edward, this has nothing to do with online purchases. The transactions were done in the stores. The criminals used the internet to access their network and steal the files containing all the card numbers. There is a risk to using a credit card for any type of purchase it seems...

Willie Yturralde, san diego, USA, Ca

This theft was not of computer, internet transactions, it was at actual physical world retail shops. Computer, internet transactions may actually be safer than actual physical world retail shops because Internet Businesses are generaly more security aware and compliant.
As always buyer beware. Even respected shops like TK Maxx are not as security compliant as they should be.

Michael Goforth, Middletown, USA/CA

This wasn't online, it was in their stores. Here in the US, I was informed several months ago about this breach, which, having occurred company-wide, also affected their US stores. My bank replaced the cards of all customers who were affected. Every day, it's something new, another reason not to trust. The criminals are always one step ahead !

Josie, Nashville, TN, USA

Mr Burke,
These people didnt - they paid at the stores, so is this just an unrelated warning?

Every credit card transaction is done via computers so either you use them and trust that the companies you use have safeguards in place or use cash all the time.

tim, edgware, middx

To Edmund Burke:

Did you not comprehend the story? The CC information was taken for everyone, not just ones who purchased something online from tjmaxx. Buying stuff online, when done correctly, has no more risk (maybe less?) than purchasing it at a store.

danv, denver, usa/colorado

Never, ever, pay by credit card on your computer. You are being watched.

Edmund Burke, Kingston upon Thames, England

Why oh WHY do these retail companies see it as necessary to keep credit card numbers in memory???? After the transaction is complete, memorizing the number should not serve any purpose at all!!!!! Retailers should depend on the CARD ISSUERS for faster validation, and not have to store the details.

Will Nott, Tomball,