This incident has 0 proposed changes. Know of details that have changed? Submit them Showing Incident 723

SUMMARY

8.5 million consumer records containing credit card and bank account information stolen
Records	8,500,000
Record Types	FIN CCN
Breach Type	Fraud Se
Data Family	Unknown
Source	Inside - Malicious
Organization	Fidelity National Information Services
Other Affected/Involved Organizations	Certegy Check Services Inc
Lawsuit?	YES
Data Recovered?	NO/UNKNOWN
Arrest?	YES
Submitted By:	Anonymous

STOCK PRICE

Chart?chxt=x,y&chxl=0:|jun-19|jun-28|jul-10|jul-19|jul-30|aug-8|aug-17|&chxr=1,46.98,57.67&cht=lc&chd=t:55.09,55.09,54.93,54.93,54.83,54.83,53.8,53.8,53.56,53.56,53.1,53.1,54.41,54.41,54.63,54.63,54.28,54.28,54.78,54.78,54.7,54.7,56.37,56.37,56.3,56.3,55.77,55.77,55.17,55.17,55.92,55.92,56.62,56.62,56.94,56.94,57.67,57.67,56.7,56.7,56.7,56.7,57.39,57.39,56.24,56.24,56.28,56.28,55.84,55.84,54.8,54.8,52.43,52.43,50.51,50.51,50.83,50.83,49.63,49.63,49.71,49.71,50.53,50.53,49.38,49.38,49.89,49.89,49.81,49.81,50.8,50.8,49.71,49.71,49.55,49.55,49.45,49.45,48.23,48.23,46.98,46.98,47.05,47.05,48.06,48.06|55.02,55.02,54.27,54.27,54.60,54.60,53.90,53.90,53.73,53.73,53.55,53.55,54.04,54.04,54.01,54.01,53.93,53.93,54.50,54.50,54.70,54.70,54.72,54.72,54.90,54.90,54.95,54.95,54.17,54.17,54.48,54.48,55.52,55.52,55.69,55.69,55.58,55.58,55.58,55.58,55.46,55.46,55.71,55.71,55.03,55.03,55.30,55.30,54.20,54.20,54.46,54.46,53.19,53.19,52.34,52.34,52.87,52.87,52.20,52.20,52.58,52.58,52.81,52.81,51.41,51.41,52.65,52.65,52.97,52.97,53.72,53.72,52.13,52.13,52.14,52.14,52.12,52.12,51.17,51.17,50.46,50.46,50.62,50.62,51.87,51.87&chds=46.98,57.67&chco=008000,aaffff,ffaaff,ffffaa&chs=460x320&chm=v,990066,0,21,1

SIMILAR INCIDENTS

records	date	organizations
8,637,405	2007-03-12	Dai Nippon Printing Company, Toyota Motor Corporation, American Home Assurance Co., Mitsubishi UFJ NICOS Co., Ltd., Aeon Co. Ltd.
4,600,000	2004-02-27	Softbank Corporation, Yahoo! BB

TIMELINE

Date	Event
None. Add Data	Incident Occurred
New Timeline Item For Incident Occurred Date Reference URL Spam Check: Are you human?
2007-06-27	Incident Discovered By Organization
New Timeline Item For Incident Discovered By Organization Date Reference URL Spam Check: Are you human?
2007-07-03	Organization Reports Incident
New Timeline Item For Organization Reports Incident Date Reference URL Spam Check: Are you human?
2007-07-05	Organization Mails Notifications
New Timeline Item For Organization Mails Notifications Date Reference URL Spam Check: Are you human?
None. Add Data	Records Recovered
New Timeline Item For Records Recovered Date Reference URL Spam Check: Are you human?
None. Add Data	Lawsuit Filed
New Timeline Item For Lawsuit Filed Date Reference URL Spam Check: Are you human?
None. Add Data	Arrest Made
New Timeline Item For Arrest Made Date Reference URL Spam Check: Are you human?

MAP OF INCIDENT LOCATION

Address: USA
Have a better address for this incident? Suggest it!

suggest a new reference

REFERENCES

suggest a new attachment

ATTACHMENTS

KNOWN COURT CASES

CLOSED - SETTLED

LOCKWOOD v. CERTEGY CHECK SERVICES, INC.,

Filed On

Justia Link

Pacer Link

Court

Federal?

Case Number

Pacer Case Number

Incident

2007-08-14

Pacer Docket

Justia

US DISTRICT COURT FLORIDA MIDDLE DISTRICT

true

2007cv01434

203984

723

Case Files

Awards / Settlements

Award	Monetary Value	Description
Attorney's Fees	$2,350,000.00	Attorney's Fees, Costs, paid by defendant
Credit Monitoring	$1,742,440.00	Claimed cost of credit monitoring per settlement
Bank Monitoring	$2,639,140.00	Claimed cost of bank account monitoring per settlement
	$6,731,580.00

OSF Summary

Filed and Settled, nothing special, though there were awards. Interestingly, per the primary sources regarding the incident, Certegy was not defaulting to offering credit monitoring, but did concede that in the settlement.

SUPERSEDED BY OTHER CASE

Sellers v. Certegy Check Services, Inc. et al

Filed On

Justia Link

Pacer Link

Court

Federal?

Case Number

Pacer Case Number

Incident

2007-10-29

Pacer Docket

Justia

US DISTRICT COURT FLORIDA MIDDLE DISTRICT

true

2007cv01020

206604

723

Case Files

Awards / Settlements

Award	Monetary Value	Description
	$0.00

OSF Summary

Case superseded by other cases' settlement

COSTS SUMMARY

Known Actual Costs

Monetary Awards from Court Cases	$6,731,580.00
TOTAL KNOWN COSTS	$6,731,580.00

Estimated Costs

Ponemon Institute Direct Costs Estimate ¹

$510,000,000.00

Note that these estimates are based on the Ponemon Institute's 2009 direct costs figures from their 2009 Annual Study: Cost of a Data Breach. We multiply $60.00 by the number of records to obtain this figure. Keep in mind that depending on the breach, the direct costs are not always suffered by the breached organizations. In the case of credit card number breaches, the direct costs can often be suffered by banks and card issuers. Also note that this is only an estimate.

PRIMARY SOURCES

Primary Source ID: 266

add details to this primary source Description

Filename	Source	Researcher	Incident IDs
NH_certegy3.pdf	New Hampshire Consumer Protection & Antitrust Bureau	kirniki	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
20149	2007-07-30	2008-12-04	23 Sep 14:28
Excerpt
" § ·=%=¥§¥%¥2&2;:;;;;i;%;%;;§L _’;¥ if ‘:‘;` ggw §‘*§§X§`§s`I.§§>@§%i,, Juiy Bi}, 2097 Lmsrcn J. Nccthcr Scurcau Chic? Camsxmmr Erutclctium & Anti Trust 33 Capixai Smrccx €jIca@c<n·dc, NH Ii33·I...

Click here for the Full Details | Download Raw PDF

Primary Source ID: 1136

add details to this primary source Description
2.3 million consumer records containing credit card and bank account information stolen
Filename	Source	Researcher	Incident IDs
ME_07192007_certegy.pdf	Maine Attorney General	kirniki	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
Not yet entered	2007-07-13	2009-01-19	25 Jan 12:26
Excerpt
‘- *‘‘‘ Certegy Payment Recovery Services .j..jjf" ‘ Tuscaloosa, AL 35403 _. Telephone; zos,75o,41so Fax: 205.750.4133 www.Hdelityinfosewices.com· July 13, 2007 - . A Office of Consumer Credit...

Click here for the Full Details | Download Raw PDF

Primary Source ID: 1211

add details to this primary source Description
2.3 million consumer records containing credit card and bank account information stolen, including 1,785 Maine residents
Filename	Source	Researcher	Incident IDs
ME_07312007_certegy.pdf	Maine Attorney General	kirniki	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
1785	2007-07-30	2009-01-29	04 Feb 21:15
Excerpt
CONSUMER FFROTECTION DIVLSIQM ?:iDEl...l'l"`Y NATlOl\lAL. §l€F$l'€ElJi.€&`f§t'$¥l§ SEEVEQES I ' 3 I July 30, 2007 State ofMaine Office of Attomey General QH-ICE OF Am-GRNEY GENERAL Linda Conti, Assis...

Click here for the Full Details | Download Raw PDF

Primary Source ID: 194

add details to this primary source Description

Filename	Source	Researcher	Incident IDs
NH_certegy2.pdf	New Hampshire Consumer Protection & Antitrust Bureau	kirniki	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
Not yet entered	2007-07-19	2008-12-04	23 Sep 13:09
Excerpt
3`uiy 39*,. ESQ? Lazaurszm 3. Nawstiiszr Eumz1u»C§1i®i] Cmsusncr Protection & Ami—'l"&‘uSt 33 C21pitLaiStrcc:£ Cmxaiazwd, NH 301 RE: Ccztizgy C§1¢:a:l»; Sewicms, im. QQ?} Sccmaai Aw:. South $:31;....

Click here for the Full Details | Download Raw PDF

Primary Source ID: 1214

add details to this primary source Description
Misappropriation of customers personal information by employee
Filename	Source	Researcher	Incident IDs
ME_07202007_certegy.pdf	Maine Attorney General	kirniki	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
Not yet entered	2007-07-20	2009-01-29	10 Feb 08:25
Excerpt
· in ji"`·i;` I I ` if ‘r' Ce fegy 'Taeck Ser woes. A _; A l` t0gSec;dd ,Ave¤u;· South Sure *11005 t -. · . w r » —· . StPerersm:rg,?1<:r‘¤da 33`7{Ji July 19, 2007 State of Maine Off...

Click here for the Full Details | Download Raw PDF

Primary Source ID: 1135

add details to this primary source Description
Personal information of customers exposed
Filename	Source	Researcher	Incident IDs
ME_08142007_certegy_check_services.pdf	Maine Attorney General	kirniki	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
25630	2007-08-10	2009-01-19	14 Feb 20:01
Excerpt
. , l Lisa F. Andress. l _ . _ AVP ai. oivisisii counsel _ I g$j,,»j;_i_ _ 100 Second Avenue South r - Suite1100S _ i i=i¤Ei.rrv i~iATi0NAi. E§;,j°§f,§§*§,§‘,§§;,YL337°1- INFORMATION S...

Click here for the Full Details | Download Raw PDF

Primary Source ID: 1405

add details to this primary source Description
Certegy breach notification sent to Hawaii
Filename	Source	Researcher	Incident IDs
7-4-2007-Certegy.pdf	Hawaii Office of Consumer Protection	d2d	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
Not yet entered	2007-07-04	2009-03-17	19 Mar 08:51
Excerpt
I 117,04/07 l4:00 Fu L 904 :157 IQTT Fl!Jlil.1‘l‘Y mln ;{vS_ ____ 0__ lguu; . . » , ,4 · j : <; 62 PLG gl y 904-357-1663 Fu: 904.361.1005 - To: Slnphm H. Lovins From: Nhria Viva; ESQ- Fmc 0{B~580-2...

Click here for the Full Details | Download Raw PDF

Primary Source ID: 1185

add details to this primary source Description
A former employee misappropriated and sold consumer information to a data broker who in turn sold a subset of that data to a limited number of direct marketing organizations.
Filename	Source	Researcher	Incident IDs
ME_07042007_certegy_check_services.pdf	Maine Attorney General	kirniki	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
Not yet entered	2007-07-04	2009-01-29	15 Apr 20:11
Excerpt
°7/°4//°7 .“°°" M @00.1 it C El"l5E`:Qy 904—357—1663 Fax: 904.357.1005 Linda Conti, Assistant Attorney l To: General From; Maria Vivas, Esq. Maine Fax: 207—524—7730 Pages; A Phone: Date: 7/4/2007 R...

Click here for the Full Details | Download Raw PDF

Primary Source ID: 1412

add details to this primary source Description
Hawaii breach notification - Certegy Check Services Inc. - an employee steals and sells customer details including names, addresses, credit card numbers, bank account numbers.
Filename	Source	Researcher	Incident IDs
07-5-2007_Certegy.pdf	Hawaii Office of Consumer Protection	d2d	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
20135	2007-07-05	2009-03-17	23 Apr 20:59
Excerpt
if I _ l , 3 ‘) ri :CEr‘C@gy ,.,,.,. ....__ ..,,·.. ?§§§%‘L.§°£§’iZE§.Z"§°§.th_ Smttsqs ‘ g .5:,. i...· F; "’ -" St Petersburg, Flornda 33701 ’0? JUL -9 F12 P3! July 5, 2007 r___{°; ;`- i...

Click here for the Full Details | Download Raw PDF

Primary Source ID: 241

add details to this primary source Description
New Hampshire breach notification - Certegy Check Services Inc - former employee steals customer data and sells to third party. Names, addresses, dates of birth, bank account numbers, credit card details exposed. Unknown number of New Hampshire residents affected.
Filename	Source	Researcher	Incident IDs
NH_certegy.pdf	New Hampshire Consumer Protection & Antitrust Bureau	kirniki	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
6933	2007-07-07	2008-12-04	23 Sep 14:02
Excerpt
Euiy 5, 2{N}7 Lawm;1.}. Nccihcr, Bureau Chief Cunsumcar Protection & Ami Trust 33 Capiial Sircs:1 Efcumard., NH @33f}} Cari`:-:g;v Check S·s:rvi»c;=:s, Imc. ifi?} Sccmnd Pura:. South SI. P*camrsbu1=g...

Click here for the Full Details | Download Raw PDF

Primary Source ID: 1965

add details to this primary source Description
Copy of Letter sent to customer detailing an employee who obtained personal information and sold it onto a data broker.
Filename	Source	Researcher	Incident IDs
FL_certegy.pdf	Florida Attorney General	infolock	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
Not yet entered	2007-07-05	2009-06-23	21 Jul 08:24
Excerpt
Certegy eo. eoxsoois { CSi-`TZEQV Tampa. ZL 336% July 5. 2307 Dear. Certegy Check Services, lnc. (Certegy}, a service provider to U.S. retail merchants, was recently victimized by an employee who wro...

Click here for the Full Details | Download Raw PDF

Primary Source ID: 1849

add details to this primary source Description
North Carolina Data Breach Notification : Employee stole personal information and sold it to marketting companies.
Filename	Source	Researcher	Incident IDs
20070704_certegy.pdf	North Carolina Department of Justice, Consumer Protection Division	d2d	<a href='/incidents/show/723'>723</a>
Records	File Date	Uploaded	Updated
Not yet entered	2007-07-04	2009-06-13	05 Aug 12:52
Excerpt
North Carolina Security Breach Reporting Form Pursuant to the Identity Theft Protection Act of 2005 Name of Business Owning pr Licensing information Aiifected by the PLEASE SUBMIT FORM TO: Breach:...