PCI DSS


From the Web

19 more financial sector breaches from 2009

February 27, 2010 from: Office of Inadequate Security

Maryland has updated its web site to provide breach notifications that it has received since its last update.  The newly posted notifications are for the period ending December 31, 2009, so there will likely be more to come for 2010

Comments  (0)


From the Web

Banks, Businesses, Viruses and the UCC

February 24, 2010 from: Rsnake's blog at ha.ckers.org

There’s an interesting post over at Krebs On Security talking about some poor company that is going bankrupt because TD Bank allegedly will not give them their money back after it was stolen out of their account.

Comments  (1)


From the Web

Heartland Payment Systems and Visa Inc. Announce Acceptance Rate of Over 97 Percent for Data Security Breach Settlement Agreement

February 05, 2010 from: Office of Inadequate Security

Financial institutions representing more than 97 percent of eligible Visa-branded credit and debit cards have accepted the Alternative Recovery Offers they received pursuant to the settlement entered into by Visa Inc. (NYSE:V), Heartland Payment Systems® (NYSE: HPY) and Heartland’s sponsoring acquirers last month. This level of acceptance fulfills the 80 percent opt-in condition that was...

Comments  (0)


From the Web

Heartland lawsuit plaintiffs go after acquiring banks’ deep pockets

January 21, 2010 from: Office of Inadequate Security

The $60 million settlement offer announced by Visa and Heartland Payment Systems seems in jeopardy of falling apart as lawyers for some of the banks file a new lawsuit against Heartland’s acquiring banks and urge rejection of the settlement offer.

Comments  (1)


From the Web

Heartland in $60 mln settlement agreement with Visa

January 08, 2010 from: Office of Inadequate Security

Heartland Payment Systems Inc (HPY.N) said it reached a $60 million settlement agreement with Visa Inc (V.N), under which it will pay issuers of Visa-branded credit and debit cards for data security breach claims.

Comments  (0)


From the Web

Heartland breach shows why compliance is not enough

January 06, 2010 from: Office of Inadequate Security

The [Heartland] intrusion led to the “stark realization that passing a PCI security audit does not make a company secure,” said Avivah Litan, an analyst at research firm Gartner Inc. “This was known well before the breach, but Heartland served as a big pail of ice water thrown on the face of companies complying with PCI,” she said.

Comments  (0)


From the Web

Heartland to pay up to $2.4 million to settle cardholder class action suit

December 21, 2009 from: Office of Inadequate Security

Under the terms of the settlement, Heartland says it will pay a minimum of $1 million and up to a maximum of $2.4 million to class members who submit valid claims for losses as a result of the intrusion.

Comments  (0)


From the Web

Heartland pays Amex $3.6M over 2008 data breach

December 17, 2009 from: Office of Inadequate Security

Heartland Payment Systems will pay American Express $3.6 million to settle charges relating to the 2008 hacking of its payment system network.

Comments  (0)


From the Web

BJ’s, Bank Not Liable for Credit Card Fraud

December 15, 2009 from: Office of Inadequate Security

Cumis Insurance Society and the credit unions it insures have failed in their lawsuit against BJ’s Wholesale Club and Fifth Third Bank over a 2004 breach that affected 9.2 million cardholders.

Comments  (0)


From the Web

Judge dismisses shareholder lawsuit against Heartland (updated)

December 09, 2009 from: Office of Inadequate Security

A U.S. District Court judge in New Jersey has tossed out a class-action lawsuit filed by shareholders against Heartland Payment Systems, the credit card processor announced Wednesday.The judge granted Heartland’s motion to dismiss the action, which was filed in the wake of Heartland’s massive breach that was reported earlier this year, according to a company statement. No reason wa...

Comments  (0)


From the Web

Gonzalez to plead guilty in NJ

December 08, 2009 from: Office of Inadequate Security

An admitted computer hacker charged in the nation’s largest-ever data breach has told federal prosecutors in New Jersey that he plans to plead guilty in connection to the alleged theft of more than 130 million credit card numbers.

Comments  (0)


From the Web

The Merchants Strike Back?

December 07, 2009 from: Office of Inadequate Security

With the recent news of several restaurants teaming up to sue point-of-sale system provider Radiant Systems (a copy of the complaint can be found here) for failing to comply with the PCI Standard, it appears that some merchants may be in a mood to strike back in the aftermath of a payment card security breach. This lawsuit comes in the wake of a couple lawsuits against payment card security assess...

Comments  (0)


From the Web

TX: Former VP of First Service CU convicted for bank fraud, ID theft

November 20, 2009 from: Office of Inadequate Security

A former Senior Vice President of Area Operations for First Service Credit Union in Houston has pleaded guilty to embezzling more than $30,000 from his former employer, United States Attorney Tim Johnson announced today.

Comments  (0)


From the Web

Massive card processor breach in Spain affecting Europeans

November 18, 2009 from: Office of Inadequate Security

Back in October, this site reported that “tens of thousands” of Swedish banking customers and “tens of thousands” of Finnish banking customers had been affected by a breach in Spain that might involve a card payment processor.

Comments  (0)


From the Web

NC loan processor sentenced for ID theft

November 17, 2009 from: Office of Inadequate Security

A former loan processor was sentenced Friday to to one year and one day imprisonment for wire fraud and aggravated identity theft charges. Senior United States District Judge James C. Fox also ordered Maria Lorena Croll, 24, of Raleigh, North Carolina, to pay restitution of $2,138.52.

Comments  (0)


From the Web

Government accused of ‘cover up’ over lost farmer tapes

November 06, 2009 from: Office of Inadequate Security

The Department of Environment Food and Rural Affairs (Defra) has been accused of a “cover up” after two back-up tapes went missing containing the banking details of around 100,000 farmers.

Comments  (0)


« First < Previous   | 1 - 2 - 3 |   Next > Last »