U.S.

PCI’s Shield Suffers Another Blow As Heartland Reports a Hack

More on the Heartland Payment Systems breach reported earlier today…. from Digital Transactions: Princeton, N.J.-based Heartland is one of the nation’s largest acquirers, processing for about 250,000 merchant locations. It has a number of business units, including its so-called Network Services segment serving mostly petroleum retailers that Heartland bought last year from Alliance...

Payroll manager gets 5 years, told to repay $500,000

Andrew Galvin reports: A former payroll manager at Advanced Medical Optics was sentenced to five years in state prison today after he pleaded guilty last month to charges that he stole more than $487,000 from his employer, prosecutors said. Robert Lee Winn, 43, of Norco, used the Santa Ana company’s payroll computer system to...

NC: Piedmont Credit Union members report fraud

Yet another payment processor? Is this related to other incidents reported this past week or something else? Who knows…. they don’t tell us. Denice Thibodeau reports: About 15 members of Piedmont Credit Union reported fraudulent purchases on their Visa-issued debit cards Tuesday, according to credit union president Tom Shields. Shields said people reported money...

WV: Local health department warns 11,000 people of possible ID theft

Eric Eyre reports: The Kanawha-Charleston Health Department is sending 11,000 letters to people who received flu shots from the agency since October, warning them that their personal information may have been stolen by a former department temporary worker. Jameelah Jossiah, 24, a former flu clinic billing clerk, was charged with computer fraud after allegedly...

Heartland Payment Systems Uncovers Malicious Software In Its Processing System (updated)

From their press release: Payments processor Heartland Payment Systems has learned it was the victim of a security breach within its processing system in 2008. Heartland believes the intrusion is contained. No merchant data or cardholder Social Security numbers, unencrypted personal identification numbers (PIN), addresses or telephone numbers were involved in the breach....