Forrester Vice President and Principal Analyst, John Kindervag, says that the incident itself should’ve never happened. The fact that three-digit CVV security codes were compromised shows they were being stored. “Without knowing the exact breach vector it’s hard to say exactly what happened, but clearly by exposing CVV. target has demonstrated a blatant disregard for. PCI DSS compliance regulations as well as. well as best practices as well. It’s a brand disaster at the busiest shopping time of the year.””]
Source: https://www.csoonline.com/article/2136973/target–the-breach-that-should-ve-never-happened.html