100 million credit cards compromised

Advertisement (Why?)

Yesterday during the biggest day in America's history, Heartland Payment System finally revealed that it's systems were compromised by hackers in late May of 2008. Speculation around the blogosphere is that the company waited until all eyes were on television sets around the world to announce the news. Heartland Payment System is a New Jersey, NY based company that handles an estimated 100 million transactions a month, serving over 250,000 customers.

President and Chief Financial Officer, Robert Baldwin, told the Washington Post that at this point the company has no idea how long the malicious software was in place or how it got there. The data that has been compromised includes names, credit and debit card numbers, and expiration dates. However according to the company no social security numbers, personal identification numbers (PIN), addresses, or telephone numbers have been compromised. This leaves the hackers very limited as to what they can do with the compromised information.

"Identity theft protection is appropriate when there is enough personal information lost that identity theft is possible," Baldwin said. "In this case, the amount of information we know they did not get is long enough that except in very circumscribed cases identity theft is just not possible. At the same time, we recognize and feel badly about the inconvenience this is going to cause consumers."

The company immediately launched 2008breach.com alerting customers of the attack, and has advised that anyone who has used Heartland Payment Systems to immediately look at their monthly credit card statement and immediately report any suspicious activity to their card holders. Analysts around the world are reporting that this could and is the biggest data breach in history, even bigger than the TJX incident.

#1 webeagle12 on 21 Jan 2009 - 15:40

wow somebody should get kicked in the *** for this

#2 artnada on 21 Jan 2009 - 16:27

Ah yesterday was a good day to bury bad news!

(1 reply) #3 +warwagon on 21 Jan 2009 - 16:41

So do we get to know which services use heartland? Like which companies go through them.

#3.1 4tehlulz on 21 Jan 2009 - 17:29

No.

"No merchant of ours represents even [one-tenth of one percent] of our volume, and to put out any name associated with what is obviously an unfortunate incident is not fair," [Robert Baldwin, Heartland's president and chief financial officer] said. "Their customers might end up having their cards used fraudulently, but that fraud might turn out to have come from their store, or it might be from another Heartland store and no one will ever really know."

Source

#4 GreyWolfSC on 21 Jan 2009 - 16:50

From their site banner:
"Heartland Payment Systems - The Highest Standards - The Most Trusted Transactions"

lolz

#5 Cryton on 21 Jan 2009 - 17:14

The server at www.newsfromheartland.com is taking too long to respond.

Maybe it got hacked too

(3 replies) #6 Rudy on 21 Jan 2009 - 18:28

wasn't there a bunch of people who got charged a small amount (under $1) by an unknown company? could this be related?

#6.1 Rudy on 21 Jan 2009 - 18:39

ah!! found it here: http://consumerist.com/5130508/did-adele-s...-does-not-exist

#6.2 excalpius on 21 Jan 2009 - 19:04

+1 Good catch!

#6.3 Kojio on 21 Jan 2009 - 20:30

$0.25 multiplied by 100 million.. that's a lot of quarters!

With such a low charge amount, it would be under the radar long enough for the culprits to make a hefty withdrawl before the banks take notice. Pretty sneaky!

#7 sgt on 22 Jan 2009 - 01:39

Aww...make the credit card companies happy...buy their monthly protection!

This reminds me of some budding virus protection companies who's programs in fect you with their own virus's...

(4 replies) #8 2Cold Scorpio on 22 Jan 2009 - 01:52

...one thing I must get off my chest: Yesterday was the biggest day in American history? Blasphemy. I think July 4th, 1776 would be a much more important date. Or the day General Cornwallis surrendered, effectively ending the Revolution. Or the beginning & ending dates of the Civil War. Or the day Lincoln passed the Exclamation Proclamation. Or the day of the bombing of Pearl Harbor. Or D-Day. Or the days we dropped The Bombs on Japan, bring an end to World War II. Or the day the Cuban Missile Crisis ended, or the days JFK & Martin Luther King were assassinated. Or September 11, 2001.

There's been many more important dates in the history of this country than Barrack Obama's inauguration, guys.

#8.1 Grandmasta_J on 22 Jan 2009 - 02:24

Are you talking about BARACK Obama?

#8.2 Qun Mang on 22 Jan 2009 - 04:54

Grandmasta_J said,

That's the only thing you got out of his post? He also misspelled "Emancipation," but the point is clear: the inauguration of Barack Hussein Obama was most definitely not the biggest day in American history.

#8.3 RebelSean on 22 Jan 2009 - 13:07

While I do honor your opinion Scorpio, that is my opinion. To each their own I guess is a better phrase to use here.

#8.4 2Cold Scorpio on 22 Jan 2009 - 15:08

Qun Mang said,

Heh, sorry about that; I usually proofread better. What can I say, it was late and I'd been awake too long.

#9 este on 22 Jan 2009 - 14:39

+1 @ 2Cold Scorpio

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.

Neowin.net