Company That Had The Largest Ever Credit Card Data Breach… Apparently Breached Again [Update]
from the hits-you-in-the-heartland dept
Remember Heartland Payment Systems? It’s the giant credit card clearinghouse that was involved in the largest ever security breach in terms of the number of credit card numbers exposed. They were successfully targeted by the same guys who had also set the previous record for largest credit card data breach, so you could question whether the issue was just a sophisticated group of hackers or poor security at Heartland (or, possibly, a combination of both). Either way, it looks like Heartland may still have some issues. Carlo sends over the news that a new security breach has been discovered at a restaurant in Austin, Texas that appears to involve someone hacking into the network between the restaurant and Heartland. It’s not yet clear if this goes beyond that one restaurant, but this can’t look good for Heartland.
Update: Heartland got in touch to let us know that this appears to be an issue outside of Heartland’s system, and that Heartland is not the target of the investigation into the breach. Heartland’s press release is basically pointing out that the weakness was with the restaurant’s credit card security, not its own.
Filed Under: breach, credit cards, security
Companies: heartland payment systems
Comments on “Company That Had The Largest Ever Credit Card Data Breach… Apparently Breached Again [Update]”
Another argument in favor of cash.
Lets stick around, and see what kind, and how bad, their punishment is for this. Then we’ll know whom to look at to blame the next breech on. I have not seen one as of yet that really got punished properly.
Remember Heartland Payment Systems?
More importantly, Remember Carlo?
Is this the same Carlo you fired about a year ago? How’s he been? Is he still in Vegas?
Security Breach Again!
This so sad for this company and customers. This is a lose lose situation. When this company fix the problem it will still lose customers and the former customers will never trust any other company fully again.
Re: Security Breach Again!
What I think is unreasonable is that with all of the money Heartland gets from handling financial transactions and information, that it can’t even be bothered to insure their security. The business is founded on the trust that they can be handled security, and that trust has been broken. Any lose of business that results from these breaches is the lest they deserve.
So how’s that PCI compliance requirement working out for everyone?
Largest ever? I think you mean largest yet. 😛
Somebody else's fault?
Details are scarce in these reports, but it looks as if the numbers were going through the network in the clear. At what point in the chain did Heartland first have the ability to encrypt them with Heartland’s public key?
If they were intercepted before this point, then I think Heartland was not to blame…
oh! that makes two, 3 strikes and they’re out
I say that we just make it a 2 strike rule and get rid of these guys. Fool me once, shame on you, fool me twice, shame on me.
Fool me twice,er, won’t, er won’t get fooled again . . .