ISR News: IRS Taps Troubled RBS WorldPay

April 26, 2009 by ADMIN · 1 Comment

Excerpts From WashingtonPost.com

The Internal Revenue Service has awarded a contract to process tax return payments for the coming filing season to RBS Worldpay, a company that recently disclosed that a hacker break-in jeopardized financial data on 1.5 million payroll card holders and at least 1.1 million Social Security numbers.

Is Heartland/WorldPay Suspect in Custody?

March 26, 2009 by ADMIN · 2 Comments

By Anthony M. Freed, Information-Security-Resources.com Financial Editor

Authorities investigating the RBS WorldPay breach, as well as the breach at Heartland Payment Systems, have used similar language to describe an international conspiracy that is targeting multiple financial institutions. Based on these similarities, it seems highly likely that Tenenbaum and his cohorts may indeed be the culprits behind a rash of major information security breaches that have the Payment Card Industry pointing fingers and attempting to dodge responsibility for security compliance.

ISR News: 2009 - Year of the Insider Threat

March 10, 2009 by ADMIN · Leave a Comment

Excerpt From BankInfoSecurity.com

The increased number of employers handing out pink slips doesn’t help quell the threat, with a record number of people on the unemployment lines and others at work worried about their own positions. “We’re going to see some insider events where insiders are tempted enough by money to enable these compromises to take place from outsiders, allowing access to payment data and account information,” says Mike Urban, Senior Director of Fraud Solutions at Fair Isaac, predicts,

Cyber Insecurity is Destroying Innovation

March 6, 2009 by ADMIN · 1 Comment

From The Cyber Security Institute

Insecurity is the greatest impediment to innovation. And this hurts America most of all. The United States simply cannot win in an economic race based almost exclusively on lower costs of production. We cannot compete on that footing against other nations where wages and benefits are vastly lower, standards of living for the majority of the people are abysmal, and health care is the ultimate luxury good of the elites. Other nations are uniquely able to re-engineer and make at a lower cost the things that Americans and others around the world need. If we run that race to the bottom we lose-win, lose or draw.

Heartland Suit Alleges “Inadequate” Security

February 26, 2009 by ADMIN · Leave a Comment

Source: Law Offices of Howard G. Smith

The investigation focuses on allegations that statements made by the Company during that period were false and misleading and failed to disclose or indicate, among other things, that: (1) the Company’s safety and security measures designed to protect consumers’ financial records and data from security breaches were inadequate and ineffective; (2) the Company faced liabilities associated with a breach of the Company’s payment processing network and increasing costs associated with implementing appropriate security measures; and (3) as a result of a breach in the Company’s payment processing network, the Company was at risk of losing customers.

Heartland CEO Now Under SEC Investigation

February 26, 2009 by ADMIN · Leave a Comment

By Anthony M. Freed, Information-Security-Resources.com Financial Editor

“The investigation may relate to stock trades made by Heartland Chairman and CEO Robert Carr after Visa notified Heartland of suspicious activity on Oct. 28, 2008. According to insider trade filings, Carr sold just under US$8 million worth of stock between Oct. 29 and the day the breach was disclosed. Heartland’s stock was trading in the $15-to-$20 range for most of these transactions, but it dropped following the breach disclosure. It closed Wednesday at $5.49.”

ISR News: Heartland Braces For A Fight

February 25, 2009 by ADMIN · Leave a Comment

Excerpts From SearchFinancialSecurity.com

“We intend to vigorously defend any such claims and we believe we have meritorious defenses to those claims that have been asserted to date,” Carr said. “At this time we do not have information that would enable us to reasonably estimate the amount of losses we might incur in connection with such claims.”

Undisclosed Breach Threatens Consumers

February 24, 2009 by ADMIN · 2 Comments

Story By DataLossDB.org

What we still don’t know is what processor has been breached. According to the aforementioned article, and as has been confirmed by our sources, VISA and Mastercard are refusing to disclose which acquirer processor had the breach, as the organization hasn’t released a public statement on it yet themselves.

More Than 500 Banks Hurt By Breach

February 23, 2009 by ADMIN · 3 Comments

Heartland Payment Systems Breach Updates:

If your institution has been affected in the Heartland breach and you are not on this list, please send an email to editor@bankinfosecurity.com. Include your name, email, and a phone number where you may be contacted for verification. Following is the latest up-to-date list of institutions impacted by the Heartland breach and - where available - the total number of cards compromised:

McAfee Report: Our Unsecured Economies

February 17, 2009 by ADMIN · Leave a Comment

By Laura Wilson

In 2000, I began serious work on protecting intellectual property, sensitive systems, and consumer information for technology and information companies. Starting in 2006, I focused on protecting this stuff within the financial industry. Based on my work with several of the largest financial companies in the world, and with a multitude of their vendors and outsourcers, the threat in the arenas of finance, corporate assets, litigation, and actual physical security cannot be overstated.

Categories
- Anthony M. Freed (26)
- Bill Brenner (2)
- Bob Violino (1)
- Bozidar Spirovski (23)
- Breach (540)
- Britt Womelsdorf (5)
- By Dr. InfoSec (2)
- Cara Garretson (7)
- CCCNews (1)
- Chorey Taylor & Feil (8)
- Christophe Veltsos (2)
- Christopher Burgess (7)
- CIOZone (26)
- Class Action Lawsuit (111)
- Cloud computing (113)
- Coby Royer (5)
- CTO Forum (9)
- D&O Liability (601)
- Daniel Wallace (5)
- Danny Lieberman (11)
- DataLine (10)
- David Alexander (2)
- Derek Crawford (1)
- Doug Pollack (7)
- due diligence (310)
- Fame Foundry (1)
- FEATURE ARTICLE (428)
- Financial (587)
- Fred Leland (7)
- Gene Kim (3)
- Government (373)
- Greg George (5)
- H1N1 (15)
- hackers (539)
- healthcare (134)
- Heather Bourgoin (1)
- HomeATM (8)
- identity-theft (535)
- IDExperts (17)
- Ike Z. Devji (1)
- Infosec Island Network (38)
- Insider Threat (490)
- Internet Crime Complaint Center (1)
- Internet Security Alliance (71)
- ISR News (321)
- Jacqueline Herships (2)
- Jenni Hesterman (3)
- John M. Salomon (2)
- John Watkins (7)
- John-Patrick Skaar (2)
- Kaliber Data Security and Compliance Consultants (3)
- Kat Sanders (2)
- Ken Leeser (3)
- Kevin L. Jackson (10)
- Kevin M. Nixon (21)
- Larry Ketchersid (1)
- Laton McCartney (7)
- Lauren Taylor (1)
- Linda McGlasson (1)
- malware (501)
- Mark Smail (1)
- Mark Wright (1)
- Mel Duvall (3)
- Michael Eggebrecht (3)
- Michael Lohr (1)
- Michael O'Conner (4)
- MicroSolved (1)
- Mike Duncan (3)
- Mike Meikle (4)
- Mike Spinney (1)
- Military (211)
- national security (453)
- PCI (308)
- PCI Security Standards Council (32)
- Physical Security (11)
- privacy (552)
- Rachel James (10)
- reach (11)
- Rebecca Herold (16)
- Richard Stiennon (44)
- Robert Siciliano (34)
- Sarbanes-Oxley (502)
- ScamStop (2)
- Sean Wilkins (2)
- Semyon Dukach (1)
- Simon Heron (14)
- Software Associates (11)
- Steven Fox (19)
- SUPERAntiSpyware (3)
- Sybase (6)
- Symplified (5)
- The Jester (8)
- The Privacy Professor (16)
- Thomas R. Fox (8)
- Tom Groenfeldt (2)
- Tom McLain (2)
- Trefis (14)
- Tripwire (18)
- Uncategorized (621)
- virtualization (101)
- Webcast (49)

Information Security Resources