This incident has 0 proposed changes.
Know of details that have changed? Submit them
Showing Incident 288 
SUMMARY
| About 9300 customers' debit card information stolen from the database of an unnamed national retailer | |
| Records | 9,300 |
|---|---|
| Record Types | CCN |
| Breach Type | Hack |
| Data Family | Electronic |
| Source | Outside |
| Organization | Unknown Organization |
| Other Affected/Involved Organizations | Frost Bank |
| Lawsuit? | NO/UNKNOWN |
| Data Recovered? | NO/UNKNOWN |
| Arrest? | NO/UNKNOWN |
| Submitted By: | Anonymous |
TIMELINE
| Date | Event |
|---|---|
| None. Add Data | Incident Occurred |
| None. Add Data | Incident Discovered By Organization |
| 2006-05-19 | Organization Reports Incident |
| None. Add Data | Organization Mails Notifications |
| None. Add Data | Records Recovered |
| None. Add Data | Lawsuit Filed |
| None. Add Data | Arrest Made |
SIMILAR INCIDENTS
| records | date | organizations |
|---|---|---|
| 15,700 | 2000-11-14 | Western Union |
| 15,000 | 2005-04-12 | Eastern National, National Park Service |
| 14,277 | 2006-04-28 | U.S. Department of Defense, Tricare Management Activity |
MAP OF INCIDENT LOCATION
Address: USA
Have a better address for this incident? Suggest it!
REFERENCES
suggest a new attachment
ATTACHMENTS
COSTS SUMMARY
Known Actual Costs
|
Estimated Costs
|
|||
|
||||
COMMENTS
by d2d [Data Loss Maven] on 2009-01-12 (about 3 years ago)
We're told that Frost bank isn't the only bank involved in this. Unfortunately, we have no further details. If anyone has any additional information, please feel free to contact us.
by d2d [Data Loss Maven] on 2009-01-14 (about 3 years ago)
An anonymous commenter says: "You do not need to single out Frost Bank in this incident. It was not Frost that was hacked, but its was an unaffiliated third party. The average consumer or business person will only see the name Frost and the work "hack" and assume it was the company's system that was compromised. Action Needed: Remove "Frost" from the reference here as Frost's internal systems nor its direct providers were involved in this. If you do not remove the name then you must add the names of all of the other financial institutions who had customers in the retailer incident. See your own reference material to understand this was not a Frost issue: "The information system breach compromised credit card accounts with banks across the nation,..." If you do not know the name of the party breached then you should say "unknown"."
by jkouns [Senior Researcher] on 2010-03-12 (almost 2 years ago)
An anonymous commenter says: "This issue had nothing to do with FROST BANK. Please remove any reference to FROST BANK as it is creating undue concern and is erroneous and inappropriate. The incident described here was strictly related to a Master Card merchant and not FROST."
by jericho [Senior Investigator] on 2010-04-07 (almost 2 years ago)
This incident was originally listed as 100 affected, but has been updated. According to the 'SA Business' article, 9300 records were stolen and only 100 were confirmed as 'abused'.
Frost Bank has been updated as an 'affected organization' and 'unknown' is listed as the primary now.
by Anonymous on 2010-08-07 (over 1 year ago)
Is this current? I know 6 Frost customers including myself that had their debit info hacked and used this week. Bank says it is not unusual. I think for 1 person to know 6 different families is not normal.
Breach Types:
- Disposal Computer | Disposal Document | Disposal Tape | Disposal Drive
- Disposal Mobile | Email | Fax | Fraud Se
- Hack | Lost Computer | Lost Document | Lost Drive
- Lost Laptop | Lost Media | Lost Mobile | Lost Tape
- Missing Document | Missing Laptop | Missing Media | Snail Mail
- Stolen Computer | Stolen Document | Stolen Drive | Stolen Laptop
- Stolen Media | Stolen Mobile | Stolen Tape | Unknown
- Virus | Web |
