PCI DSS
From the Web
19 more financial sector breaches from 2009
February 27, 2010 from: Office of Inadequate Security
Maryland has updated its web site to provide breach notifications that it has received since its last update. The newly posted notifications are for the period ending December 31, 2009, so there will likely be more to come for 2010
Comments (0)
From the Web
Banks, Businesses, Viruses and the UCC
February 24, 2010 from: Rsnake's blog at ha.ckers.org
There’s an interesting post over at Krebs On Security talking about some poor company that is going bankrupt because TD Bank allegedly will not give them their money back after it was stolen out of their account.
Comments (1)
From the Web
Heartland Payment Systems and Visa Inc. Announce Acceptance Rate of Over 97 Percent for Data Security Breach Settlement Agreement
February 05, 2010 from: Office of Inadequate Security
Financial institutions representing more than 97 percent of eligible Visa-branded credit and debit cards have accepted the Alternative Recovery Offers they received pursuant to the settlement entered into by Visa Inc. (NYSE:V), Heartland Payment Systems® (NYSE: HPY) and Heartland’s sponsoring acquirers last month. This level of acceptance fulfills the 80 percent opt-in condition that was...
Comments (0)
From the Web
Heartland lawsuit plaintiffs go after acquiring banks’ deep pockets
January 21, 2010 from: Office of Inadequate Security
The $60 million settlement offer announced by Visa and Heartland Payment Systems seems in jeopardy of falling apart as lawyers for some of the banks file a new lawsuit against Heartland’s acquiring banks and urge rejection of the settlement offer.
Comments (1)
From the Web
Heartland in $60 mln settlement agreement with Visa
January 08, 2010 from: Office of Inadequate Security
Heartland Payment Systems Inc (HPY.N) said it reached a $60 million settlement agreement with Visa Inc (V.N), under which it will pay issuers of Visa-branded credit and debit cards for data security breach claims.
Comments (0)
From the Web
Heartland breach shows why compliance is not enough
January 06, 2010 from: Office of Inadequate Security
The [Heartland] intrusion led to the “stark realization that passing a PCI security audit does not make a company secure,” said Avivah Litan, an analyst at research firm Gartner Inc. “This was known well before the breach, but Heartland served as a big pail of ice water thrown on the face of companies complying with PCI,” she said.
Comments (0)
From the Web
Heartland to pay up to $2.4 million to settle cardholder class action suit
December 21, 2009 from: Office of Inadequate Security
Under the terms of the settlement, Heartland says it will pay a minimum of $1 million and up to a maximum of $2.4 million to class members who submit valid claims for losses as a result of the intrusion.
Comments (0)
From the Web
Heartland pays Amex $3.6M over 2008 data breach
December 17, 2009 from: Office of Inadequate Security
Heartland Payment Systems will pay American Express $3.6 million to settle charges relating to the 2008 hacking of its payment system network.
Comments (0)
From the Web
BJ’s, Bank Not Liable for Credit Card Fraud
December 15, 2009 from: Office of Inadequate Security
Cumis Insurance Society and the credit unions it insures have failed in their lawsuit against BJ’s Wholesale Club and Fifth Third Bank over a 2004 breach that affected 9.2 million cardholders.
Comments (0)
From the Web
Judge dismisses shareholder lawsuit against Heartland (updated)
December 09, 2009 from: Office of Inadequate Security
A U.S. District Court judge in New Jersey has tossed out a class-action lawsuit filed by shareholders against Heartland Payment Systems, the credit card processor announced Wednesday.The judge granted Heartland’s motion to dismiss the action, which was filed in the wake of Heartland’s massive breach that was reported earlier this year, according to a company statement. No reason wa...
Comments (0)
From the Web
Gonzalez to plead guilty in NJ
December 08, 2009 from: Office of Inadequate Security
An admitted computer hacker charged in the nation’s largest-ever data breach has told federal prosecutors in New Jersey that he plans to plead guilty in connection to the alleged theft of more than 130 million credit card numbers.
Comments (0)
From the Web
The Merchants Strike Back?
December 07, 2009 from: Office of Inadequate Security
With the recent news of several restaurants teaming up to sue point-of-sale system provider Radiant Systems (a copy of the complaint can be found here) for failing to comply with the PCI Standard, it appears that some merchants may be in a mood to strike back in the aftermath of a payment card security breach. This lawsuit comes in the wake of a couple lawsuits against payment card security assess...
Comments (0)
From the Web
TX: Former VP of First Service CU convicted for bank fraud, ID theft
November 20, 2009 from: Office of Inadequate Security
A former Senior Vice President of Area Operations for First Service Credit Union in Houston has pleaded guilty to embezzling more than $30,000 from his former employer, United States Attorney Tim Johnson announced today.
Comments (0)
From the Web
Massive card processor breach in Spain affecting Europeans
November 18, 2009 from: Office of Inadequate Security
Back in October, this site reported that “tens of thousands” of Swedish banking customers and “tens of thousands” of Finnish banking customers had been affected by a breach in Spain that might involve a card payment processor.
Comments (0)
From the Web
NC loan processor sentenced for ID theft
November 17, 2009 from: Office of Inadequate Security
A former loan processor was sentenced Friday to to one year and one day imprisonment for wire fraud and aggravated identity theft charges. Senior United States District Judge James C. Fox also ordered Maria Lorena Croll, 24, of Raleigh, North Carolina, to pay restitution of $2,138.52.
Comments (0)
From the Web
Government accused of ‘cover up’ over lost farmer tapes
November 06, 2009 from: Office of Inadequate Security
The Department of Environment Food and Rural Affairs (Defra) has been accused of a “cover up” after two back-up tapes went missing containing the banking details of around 100,000 farmers.
Comments (0)
- Improving Security by Failing Faster
- BYOD: Should It Be the Wave of the Future?
- Trend Micro Discovers "SafeNet" - a New Targeted Espionage Operation Online
- Managing My Company’s Security is a Nightmare
- Bridging the Cybersecurity Divide, Why Security Innovation Must Lead the Way
- The Evolution of Industrial Control System Information Sharing
- ATM Security (And Really Learning from the Past)
- Complimentary IT Security Resources [May 13, 2013]
- Steps Toward Weaponizing the Android Platform
- Mobile Security Processes Could Be Applied to Medical Devices: Bluebox