ABC Money
Home

Transaction processor responsible for credit card security breach


Published :
Tue, 21 Jun 2005 10:35
By : Cedric Benson
Print this Story


AddThis Social Bookmark Button

NEW YORK: Major credit card issuers are still assessing the extent of damage caused by a security breach at a processing firm announced by MasterCard last Friday. They are still not sure which customer accounts have been intruded into and are waiting for details from MasterCard and Visa on the possible targeted accounts.

The breach, according to the card issuers, affected about 20 million Visa holders, 14 million MasterCard holders and 6 million holders of American Express and other card brands.

MasterCard said it suspects data from roughly 200,000 accounts have been stolen in the incident. Card issuers like Citigroup, J. P. Morgan Chase and MBNA are monitoring their respective accounts.

The security breach had occurred in May at CardSystems Solutions, an Atlanta-based company that processes credit card payments for small and medium-sized merchant firms.

The firm said it does not know how its system was hacked or whether the intrusion took place from inside or outside the company. The breach was detected at its Tucson, Arizona, processing center.

John Perry, CardSystems' chief executive officer when asked about cause, culprit and how simply said: "We don't know. This is very early in the investigation."

CardSystems processes payments for more than 105,000 businesses. It handled more than $15 billion in transactions for MasterCard, Visa, Discover and American Express last year.

The firm admitted it had stored information on thousands of cardholders -- their names, account numbers and security codes -- violating rules of MasterCard and Visa, for "purposes of research". The idea was to assess why certain transactions were never authorized or completed.

Perry said account numbers, names and expiration dates were stored in an "exception file." The file contained accounts with transactions unable to be processed.

However, the file did not contain information used in identity theft, such as Social Security numbers or birth dates, a MasterCard spokesperson said.

Both Visa and MasterCard have started giving lists of their affected accounts.

The U.S. Public Interest Research Group advised credit card holders to wait for notices from their respective banks. The Group's consumer program director, Edmund Mierzwinski, said, "In the interim, if consumers have the ability to check credit and checking accounts online they should do that and if not, they should open and review their statements very carefully the next couple of months."

MasterCard clarified that it "does not allow processors that are in violation of our rules to process transactions". The company said it detected rule violations by CardSystems only when it began investigating this spring.

Visa had carried out a security audit of CardSystems in December 2003 and certified that the firm has been complying with the security regulations. It had not found any breaches until mid-May.

A spokesperson for Visa said, "When we investigated, that's when we knew they were storing the data, and that's when they fell out of compliance."

As per service conditions, Visa could levy a fine up to $500,000 on the firm. Visa has nearly 150 such service providers around the globe, all of which follow the strict security audits. It said it is planning to review the security audits from retailers and other businesses that accept its cards.

Meanwhile, major banks in the U.S. and elsewhere are asking Visa and Mastercard holders who may have used their cards in the United States or online in the past six months to check their statements.


Share on



Comment on this Article
Comment:
Title:
Name:
Please Enter
 
Here
  

 Search News

 Look For
Business
Credit cards
Finance
Loans
Money
Mortgages

 
 Stock Quotes *
SYMBOL
LAST
CHANGE
DOW JONES
10340.69
-107.24 ( -1.03 %)
NASDAQ
2792.28
22.57 ( 0.81 %)
FTSE 100
5741.15
38.78 ( 0.68 %)

SYMBOL ( 2012-01-19 )
LAST
CHANGE
STANDARD CHARTERED ( 11:35am )
1559.00
70.00 ( 4.76 %)
WOLSELEY PLC ( 11:35am )
2250.00
70.00 ( 3.20 %)
CARNIVAL ( 11:35am )
2017.00
46.00 ( 2.42 %)
LAND SECURITIES GROUP ( 11:35am )
679.50
36.50 ( 5.63 %)
WHITBREAD ( 11:35am )
1662.99
33.99 ( 2.09 %)

SYMBOL ( 2012-01-19 )
LAST
CHANGE
3M COMPANY ( 12:34pm )
85.78
0.71 ( 0.83 %)
BOEING CO ( 12:34pm )
75.70
0.64 ( 0.85 %)
JP MORGAN CHASE CO ( 12:34pm )
37.03
0.49 ( 1.33 %)
WAL MART STORES ( 12:34pm )
60.44
0.43 ( 0.72 %)
IBM ( 12:34pm )
181.50
0.43 ( 0.24 %)

SYMBOL ( 2012-01-19 )
LAST
CHANGE
F5 NETWORKS INC ( 12:11pm )
122.38
13.92 ( 11.80 %)
ICO GLOBAL COMM CL A ( 8:01pm )
99999999.99
9.37 ( 366.02 %)
PRICELINECOM INC ( 12:23pm )
525.40
6.57 ( 1.26 %)
AMAZONCOM INC ( 12:04pm )
195.65
6.21 ( 3.25 %)
MILLICOM INTERNATIONAL CELLULAR SA ( 4:00pm )
110.18
4.82 ( 4.43 %)

Gainers & Losers
Dow Jones
Euro Stoxx 50
FTSE 100
FTSE 250
FTSE AIM
FTSE ALL
Nasdaq

 Portfolio Manager

You must log in to access this area of the site. If you are not a registered user click here to sign up for instant access!


 Finance Explained

Money making ideas

Save money

Money management
Savings accounts
Investing money
Share dealing
Stock broker
Forex currency trading
Pension plans
Functions of Money

(c) 2007 ABCmoney.co.uk, All Rights Reserved
*ABCMoney.co.uk does not guarantee the accuracy of any share prices or stock quotations displayed. These are not real time quotes; all are delayed by at least twenty minutes and are for information purposes only.