true 12 1 false false false 1518 true 130000000 471 2012-05-07T23:57:20Z 190 Hack CCN 2009-01-20 00:00:00 UTC Organization reports incident 2009-01-27 00:00:00 UTC Lawsuit filed 2009-01-12 00:00:00 UTC Incident discovered by organization 2009-08-16 00:00:00 UTC Arrest made 2008-05-15 00:00:00 UTC 2008-11-13 06:20:00 UTC Incident Occurred Outside 1 Heartland Payment Systems HPY NYSE 1000000000.0 US$ 2007-12-31 Richard Vague Scott L Bok Jonathan J Palmer Mitchell L Hollin Marc Ostro George F Raymond Robert H Niehaus /business/company 88200000.0 US$ 2006-12-31 1097000000.0 US$ 2006-12-31 Heartland Payment Systems, Inc. (NYSE: HPY) provides debit, prepaid, and credit card processing, online payments check processing, payroll services and a growing line of industry solutions for small to mid-sized merchants. Heartland Payment Systems is currently the fifth largest credit card processor in the United States and the 9th in the world. Founded by Robert O. Carr in 1997, Heartland Payment Systems is headquartered in Princeton, New Jersey. There are also offices nationally in Texas, Colorado, Tennessee, Oregon, Indiana, and Ohio. Heartland Payment Systems processes transactions for more than 250,000 business locations in the United States. Heartland Payment Systems currently processes more than 11 million transactions a day and more than $120 billion in transactions a year.... Heartland Payment Systems 1459 false Heartland Payment Systems HPY 2011-07-16T15:30:15Z 1 14980000000.0 2007 US$ 14982000000.0 2007-12-31 US$ 21133000000.0 2007 US$ 7882000000.0 2000 US$ Bank of America 2005 MBNA 2004 FleetBoston Financial 2007-10 LaSalle Bank 2008-07 Countrywide Financial 2006-11-20 U.S. Trust Company 2004 National Processing Company 2009-01-01 Merrill Lynch BAC NYSE 8648 TYO LaSalle Bank Midwest LaSalle Bank Bank of America Capital Investors BA Merchant Services FIA Card Services Bank of America Securities Countrywide Financial 2009-01-01 Merrill Lynch 155730000000.0 2008 US$ /business/company 1988 Robert W. Frick 2001 Patricia E. Mitchell 2006-01 Frank P. Bramble 2004-04 Gary L. Countryman W Steven Jones Thomas M. Ryan 2004 William Barnet III 2004-04 John T. Collins 1988 Meredith R. Spangler Robert L. Tillman Walter E. Massey 2006 Monica C. Lozano Thomas J. May 2001-04 Ken Lewis 1994 Jackie M. Ward Solomon Trujillo 1999 James H. Hance Jr. 2005 2005-12 Tommy Franks 2004-04 Charles K. Gifford 2005-01 2006-05 O.Temple Sloan Jr. 1993 James H. Hance Jr. 2005-01-31 Samuel H. Armacost 1996 O.Temple Sloan Jr. 23010000000.0 2007-12 US$ 14982000000.0 2008 US$ 206587 2007 209718 2008-02-28 119190000000.0 2007 US$ 117017000000.0 2007 US$ 51392000000.0 2000 US$ 119190000000.0 2008 US$ Washington University in St. Louis is a nonsectarian, private research university located in suburban St. Louis, Missouri. Founded in 1853, and named for George Washington, the university has students and faculty from all fifty U.S. states and more than one hundred and ten nations. Twenty-two Nobel laureates have been affiliated with Washington University, nine doing the major part of their pioneering research at the university. The university has an endowment of $4.07 billion, the 18th largest in the country. In FY 2006 the National Science Foundation reported that the university received $434 million in Federal research funds, ranking sixth among private universities receiving federal research and development support, and in the top four in funding from the National Institutes of... Bank of America 2749 Tower Federal Credit Union 2010-06-08T06:17:34Z 1 Washington University in St. Louis is a nonsectarian, private research university located in suburban St. Louis, Missouri. Founded in 1853, and named for George Washington, the university has students and faculty from all fifty U.S. states and more than one hundred and ten nations. Twenty-two Nobel laureates have been affiliated with Washington University, nine doing the major part of their pioneering research at the university. The university has an endowment of $4.07 billion, the 18th largest in the country. In FY 2006 the National Science Foundation reported that the university received $434 million in Federal research funds, ranking sixth among private universities receiving federal research and development support, and in the top four in funding from the National Institutes of... Beverly National Bank 2750 Beverly National Bank 2010-06-08T06:23:14Z

Malicious Software/Hack compromises unknown number of credit cards at fifth largest credit card processor

Washington Post is saying 100,000,000 cards, see the washington post reference. 2009-01-20 14:04:39 UTC This breach is most likely WELL over 100mill. Heartland does 100mill or more PER MONTH. I would estimate 5-700 mill. 2009-01-20 17:07:49 UTC The PSP in this case is of course PCI compliant? Not! If they were Tripwire (or similiar) and malware should have been installed as standard and would have potentially protected against this....... 2009-01-21 05:19:35 UTC Actually, they were PCI compliant as of April 2008. 2009-01-22 11:26:01 UTC http://usa.visa.com/download/merchants/cisp-list-of-pcidss-compliant-service-providers.pdf Service Provider: Heartland Payment Systems Validation Date: April 30, 2008 Services Covered by Review: Payment Processing Assessor: Trustwave 2009-01-23 04:35:43 UTC "No confidential merchant data, Social Security numbers, unencrypted personal identification numbers (PIN), addresses or telephone numbers were retrieved in what is believed to be a global cyber-fraud operation. Heartland does not yet know how many card numbers were obtained." http://www.snl.com/irweblinkx/file.aspx?IID=4094417&FID=7249269 2009-01-23 12:42:47 UTC An OSF staff member mailed the PCI-DSS contact for Trustwave asking for public comment. 2009-01-24 04:32:21 UTC Suspect supposedly pinpointed per http://www.storefrontbacktalk.com/securityfraud/feds-identify-overseas-suspect-in-heartland-case/ 2009-01-24 13:13:55 UTC Lawsuit filed : http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1346268,00.html 2009-01-28 14:06:25 UTC I received a new discover card this week. The account number did not change, but the expiration and validation code on the back changed. When I called Discover to activate the card I ask why the change and he acknowledge it was due to the Heartland compromise. 2009-01-30 17:01:10 UTC I've been watching this one since it happened in January. I just now (May 11th) got notified by Suntrust that my card may have been compromised in this breach. 4 months to notify me? They've got to be kidding. 2009-05-11 18:17:18 UTC In a recent update Heartland Payment Systems announced today (January 8, 2010) that it will pay Visa-branded credit and debit card issuers up to $60 million to cover losses incurred from the Heartland data breach. http://www.bankinfosecurity.com/articles.php?art_id=2054&rf=010910eb 2010-01-11 04:16:10 UTC

90 Nassau St, Princeton, NJ 08542, USA

90 Nassau St Borough of Princeton Princeton Mercer NJ 08542 US 40.3497 -74.66 8