Merchant911 - Fraud Prevention for Merchants

• The Best of the Best

  

• Important Fraud Prevention Sites

  • Need a full service solution including Payer Authentication?
  • preCharge - One of the best payment processors I know of.
  • Prevent E-Commerce Chargebacks - The only computer based interactive course designed to help e-commerce merchants protect themselves against credit card fraud.

• Links of Importance

  • Alternatives From Nature - The freshest herbs anywhere!
  • The Barking Lamb - Herbs, gifts, and vintage Victorian beauty

• Similar posts

  • The Hannaford Data Breach - It’s Unique
  • More Data Pilfered In Transit
  • Still Another Attempt to Prevent Credit Card Fraud
  • The Recent 60 Minutes Report on Fraud
  • The 2007 costs are rolling in.

• About...

  • The Author

• Categories

  Select Category Bank of New York Mellon  (1) chargeback  (5) CitiBank  (2) Credit card  (22) credit card fraud  (46) Data Breach  (17) Debit cards  (3) e-Commerce  (38) fraud  (31) fraud trends  (34) fraudulent use of cards  (21) government accountability  (6) greed  (8) identity theft  (18) IfByPhone  (1) Interchange Fees  (3) merchant  (21) Merchant911.org  (7) New Category  (1) prevent  (3) prevent chargebacks  (7) profit from fraud  (11) reducefraud.com  (1) SoftCard.biz  (1) Wells Fargo  (1)

• A bit of humor

• Archives

  • August 2008 (6)
  • July 2008 (5)
  • June 2008 (6)
  • May 2008 (3)
  • April 2008 (8)
  • March 2008 (6)
  • February 2008 (2)
  • January 2008 (5)
  • December 2007 (2)
  • November 2007 (2)
  • October 2007 (2)
  • July 2007 (2)
  • May 2007 (1)
  • April 2007 (1)
  • March 2007 (1)
  • December 2006 (1)
  • October 2006 (1)
  • August 2006 (1)
  • July 2006 (1)
  • June 2006 (1)
  • May 2006 (1)
  • April 2006 (1)
  • March 2006 (2)
  • February 2006 (1)

29 Mar

More on the Hannaford Breach

In a story released yesterday in the Boston Globe and confirmed by Hannaford Bros. it was announced that the source of the Hannaford data breach was malicious software that had been installed on their servers. While this malware was happily transmitting transaction information to the bad guys, Hannaford was certified as being PCI compliant. This isn’t good news for anyone.

We can only speculate on the impact on the payment processing industry, but rest assured that changes will happen - probably sooner rather than later. It’s a pretty established rule of security that nothing is foolproof but I doubt that anyone expected this. Somehow, the bad guys got through firewalls, encryption, and all the other safeguards that Hannaford had in place.

What does this mean to E-commerce merchants?

If there was an on-going breach of data during a period of compliance, then PCI is going to change. At the moment it does, all compliant merchants will cease to be compliant and they will scramble. It will get even more expensive than it already is.

This entry was posted on Saturday, March 29th, 2008 at 8:22 am and is filed under Credit card, Data Breach, credit card fraud, e-Commerce, fraud, fraud trends, merchant. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

© 2008 Merchant911 - Fraud Prevention for Merchants | Entries (RSS) and Comments (RSS)