Most Popular Stories
Events
- AIIM Expo + Conference
April 20-22, 2010 — Philadelphia, PA
Sponsored Links
TOPICS >> PCAOB | Encryption | GRC | PCI DSS | Internal Audits | Data Loss Prevention | Sarbanes-Oxley
Latest News
Free Newsletter
FierceComplianceIT is a leading source of news and information on compliance IT in financial services. Join 14,000+ CCOs, CFOs, and CIOs who get FierceComplianceIT via weekly email. Sign up today!
About | View Sample | Privacy
Popular Topics
Lawsuit against Heartland updated
In the wake of the disclosure of the massive data breach at Heartland Payments Systems--masterminded by Albert Gonzalez--no one was surprised when Heartland was sued. A class action suit was amended last month.
The complaint notes comments by CEO Robert Carr to analysts as early as November 2008. According to the complaint, Carr said he recognized "the need to move beyond the lowest common denominator of data security, currently the PCI DSS standards. We believe it is imperative to move to a higher standard for processing secure transactions."
To plaintiffs, this confirms that the company knew it was offering substandard security. Also at issue is the very issue of PCI-DSS compliance. In March 2009, Heartland was removed from Visa's list of compliant firms. It was added back to the list in May, according to Bank Info Security. All this is very unfortunate. We can only take solace in the fact that it seemed like it prompted the industry to act, on end-to-end encryption and other issues.
For more:
- here's a copy of the complaint
- here's an article from Bank Info Security
Related Articles:
Heartland's encryption program underway
Breach info sharing gets underway
PCI sets wireless security guidelines
Fraud management and PCI
Comments
Post new comment
Home
| Subscribe | Advertise | Mobile Edition | RSS |
Privacy
| Site MapTHE FIERCEMARKETS NETWORKFierceFinance | FierceFinanceIT | FierceComplianceIT | FierceHealthcare | FierceHealthFinance | FierceHealthIT | Hospital Impact | FierceMobileHealthcare | FierceCIO | FierceCIO:TechWatch | FierceContentManagement | FierceMobileIT | FierceGovernmentIT | FierceBiotech | FierceBiotech Research | FiercePharma | FierceVaccines | FierceBiotechIT | FiercePharma Manufacturing | FierceIPTV | FierceOnlineVideo | FierceTelecom | FierceVoIP | FierceBroadbandWireless | FierceDeveloper | FierceMobileContent | FierceWireless | FierceWireless:Europe | FierceCable© 2010 FierceMarkets. All rights reserved. |
![]() |



