Data Breach Ripples: Week of December 08

Posted by Zach Walker on Dec 17, 2014 8:49:00 AM
Find me on:

DBR_Large-557569-edited

In this issue: a U.S. District Judge has ruled that card issuers can sue Target for it’s 2013 data breach, Charge Anywhere, a mobile payment provider, suffers a data breach that lasted nearly 5 years, the cyber attack that hit Sony Studios could cost the company as much as $100 million and a parking company in St. Louis, MO suffers a data breach at Union Station.

In this issue: a U.S. District Judge has ruled that card issuers can sue Target for it’s 2013 data breach, Charge Anywhere, a mobile payment provider, suffers a data breach that lasted nearly 5 years, the cyber attack that hit Sony Studios could cost the company as much as $100 million and a parking company in St. Louis, MO suffers a data breach at Union Station.

 

ICYMI: U.S. District Judge Rules Financial Institutions Can Sue Target Regarding Breach

A recent court decision that could impact other corporations in the future, a U.S. District Judge of St. Paul, Minnesota has ruled that the financial institutions that are claiming billions of dollars in costs to replace credit and debit cards compromised in the Target data breach may proceed with their case against the big box retailer.

In a Reuters article, U.S. District Judge Paul Magnuson’s court decision is a breakthrough for banks and credit unions affected by data breaches as he found that the card issuers were also victims in cases like the Target breach. Target has already maxed out their data breach insurance policies covering around $90 million of the existing expenses. For more info on the Target data breach and a detailed timeline leading up to the compromise, check out our blog post “Target: 66 Days of Gloom.” 

 

Charge Anywhere Acknowledges Five Year Long Data Breach

Mobile payment provider, Charge Anywhere, acknowledges that the company has been the victim of a data breach going back to November of 2009. According to a eSecurity Planet report, cardholder data may been housed in plain text exposing payment information including account numbers, verification codes and expiration dates.

In a statement by Charge Anywhere, the malware has been removed from the company’s systems and they are currently working to improve their security measures.

 

Cyber Attack Could Cost Sony Studios as Much as $100 Million

With new details emerging every other day, the data breach and cyber attacks on Sony Studios could cost the company up to $100 million by the time dust settles. While it is still too early to accurately determine the cost of this data breach, Re/Code notes that Sony Studios is at risk for higher losses as films such as “Annie” or “Fury” are being found across the web for illegal download.

In the last two weeks, we’ve seen Sony Studio’s website shut down and the sensitive information of Sony employees including Social Security numbers exposed by the group of cybercriminals calling themselves The Guardians of Peace. 

Parking Company Issues Data Breach At Union Station in St. Louis

St. Louis Parking Company recently issued a press release informing its customers that had used their credit or debit cards at the St. Louis Union Station parking lot in October may have had their payment information compromised. The breach lasted between October 6th and October 31st of 2014 and at this time, it is unknown how many cardholders have been affected during this breach.

According to the St. Louis Business Journal, St. Louis Parking Company is working with third party forensic experts to determine the cause of the breach.

Thanks for reading this week’s newsletter and we hope you have a great weekend! If you missed last week’s email or want to share these with friends or colleagues, click here!

New Call-to-action

Topics: Data Breach Ripples