Target: SEC Won't Penalize it Over 2013 Data Breach

The Securities and Exchange Commission (SEC) decided not to penalize Target Corp. for the 2013 cyberattack that led to the exposure of millions of customers’ data, the company said Tuesday. The agency was one of several governmental entities to investigate the retailer in the wake of the attack, one of the largest against a U.S. company. In its quarterly results document, filed with the SEC and published by the agency online for investors to see, Target said the investigation ended during the May-to-July period. It said the SEC “does not intend to recommend an ­enforcement action against us.”