Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Heartland Payment Systems, the fifth largest payments processor in the United States, has agreed to pay issuers of Visa-branded credit and debit cards up to $60 million (A$64m) in compensation for losses they incurred after the massive data breach it suffered in 2008.
Heartland revealed in January of last year that hackers had infiltrated its computer systems and planted malware on its servers designed to steal card data – in the region of 100 million cards are thought to have been compromised.
Heartland’s chairman Bob Carr said he was pleased to have reached a “fair settlement agreement” regarding the losses issuers may have suffered as a result of the intrusion.
“At Heartland, we are also committed to helping issuers – as well as all stakeholders in the payment ecosystem – mitigate future risk,” he added.
“We have assumed a leadership position in the development of enhanced data security and fostering the sharing of information.”
Ellen Richey, chief enterprise risk officer at Visa, urged issuers to participate in the settlement program while emphasising Visa’s security credentials.
“Helping financial institutions mitigate costs after a data security breach has been a long-standing component of Visa’s security strategy, along with promoting new security technologies, preventing fraud and leading efforts to secure sensitive data across the entire payment system,” she said.
The Visa payout comes just a month after Heartland announced a similar settlement with American Express of US$3.6m, and yet again highlights the financial penalties that can result when IT systems are compromised.
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.