Think PCI compliance isn’t important? Dave & Busters restaurant chain got 20 years of ‘probation’ for being a non-compliant victim.
Dave & Buster’s is one of a long list of merchants that was hacked by Albert Gonzales. Gonzalez is currently spending 20 years in Federal prison for his part in a string of data breaches that resulted in the compromise of over 170 million credit and debit cards. Dave & Buster’s only had 130,000 card numbers stolen.
An article in Evan Schuman’s Storefront Backtalk reported this morning that, as a result of that breach, Dave & Buster’s must submit to no less than 20 years of scrutiny by the Federal Trade Commission.
You read that right. The FTC has ruled that the restaurant chain “engaged in a number of practices that, taken together, failed to provide reasonable and appropriate security for personal information on its computer networks.” In other words, they were not PCI compliant. As a result, Dave & Buster’s will spend the next 20 years reporting their compliance standards to the FTC.
The price of being a victim of a crime.
Similar Posts:
- Genesco suffers breach – Not PCI compliant?
- Fraud Spree points to merchant security
- Albert Gonzales may be in Jail but it ain’t over for a long time.
- A bit of good news for PCI compliance – but only in Washington
- One thing every e-commerce merchant must know
[...] This post was mentioned on Twitter by Joan Miller, Tom Mahoney. Tom Mahoney said: Card Breach Victim Gets Twenty Years ‘Probation’: Think PCI compliance isn’t important? Dave & Busters r… http://bit.ly/9o5fgv [...]