With less than a week until Christmas, a real-life Grinch has stolen the credit and debit card information of about 40 million Target shoppers.

Target says anyone who made purchases by swiping cards at terminals in its U.S. stores between Nov. 27 and Dec. 15 may have had their accounts exposed. The stolen data includes customer names, credit and debit card numbers, card expiration dates and the three-digit security codes located on the backs of cards.

"Especially on Black Friday when there's who knows how many billions of dollars that are going to be transacted," said technology expert Craig Agranoff. "It's very easy for a sophisticated group and they can do it without being detected."

The stolen information included Target store brand cards and major card brands such as Visa and MasterCard. "The only way -- if you want to prevent this -- is don't use a credit card."

"It is very hard for any of us to protect ourselves from that," said Agranoff.

The data breach did not affect online purchases, the company said.

Biggest data breaches of all time

Published On: Dec 19 2013 09:27:25 AM EST   Updated On: Aug 21 2014 10:11:06 AM EDT

UPS is the latest company to fall victim to a data breach, this one affecting 51 stores in 24 states. Take a look at some of the biggest data breaches of all time.

Credit Cards, Money, Finance
1 / 10

UPS on Thursday announced a computer breach at 51 of its stores, making Big Brown the latest retailer to lose customer data. The hacking occurred at stores in 24 states, or around 1 percent of its locations. At most stores, the malware attack occurred after March 26, and was eliminated by Aug. 11. Take a look at some of the biggest data breaches of all time.

If you see suspicious charges, report the activity to your credit card companies and call Target at 866-852-8680. You can report cases of identity theft to law enforcement or the Federal Trade Commission.

You can get more information about identity theft on the FTC's website at, or by calling the FTC, at (877) IDTHEFT (438-4338).