Rippleshot Blog

Since we last covered the Target lawsuit, we saw a potential $19 million settlement brought to the table by Mastercard, which was defeated by their issuing banks in May. The settlement would have forced an end to the class-action litigation, which is now moving forward, in parallel with MasterCard’s attempt to renegotiate their settlement deal. Late last week, the banks involved in the lawsuit filed a request with the U.S. District Court of Minnesota to unseal some documents that until now, Target has been attempting to keep classified as confidential.

In this week's issue: the UCLA Health system was breached, Ashley Madison confirms that its been hacked, it appears more retailers have been breached due to a third-party vendor, the FTC is going after LifeLock for poor data security and in this week's blog post, liberal card re-issuance is costing financial institutions due to data breaches.

Every day, fraud analysts across the U.S. are stretched razor thin attempting to curtail the ever-growing fight against fraud. The current methods of common point of purchase (CPP) analysis are labor-intensive and time-consuming, that are done in-house via a manual process.

In this week's issue: the Army National Guard discloses a data breach, a California-based hotel group has been breached, Walmart Canada is investigating a potential breach involving it's photocentre, cyber insurance rises in popularity to meet a growing need, and in this week's blog post, we take an in depth look at the upcoming October 2015 EMV deadline.  

As the deadline for implementation of EMV nears closer, and chip cards are starting to hit customer mailboxes, questions surrounding the conversion are growing louder. The most controversial being why the U.S. has chosen to implement chip and signature over chip and PIN (like most other countries that have made the switch). There has been a ton of speculation over the decision, so we’re taking a step back to explain the differences, their impact, and what it really means to not be implementing PIN verification.

In this week's issue:  an Illinois insurer exposes personal data due to a software error, a spyware vendor is the latest victim of a data breach, the Detroit Zoo is investigating a potential data breach, a new study shows security gaps in vendor risk management and in this week's Rippleshot blog post, we put together an infographic with ten data breach statistics that you need to know moving forward.

Back in March of this year, we put together ten data breach statistics that should have your attention, followed shortly there after with ten more statistics that needed your attention. After the publishing of the 2015 Trustwave Global Security Report, and the 2015 Ponemon Institute Cost of A Data Breach Study, we’ve pulled 10 new stats that financial institutions, retailers and cardholders need to be aware of moving forward.

In this week's issue: the Department of Justice is investigating a potential data breach involving an ATF executive, banking malware is getting tougher to block, banks are seeing suspicious activity at Trump Properties locations, JPMorgan Chase has reassigned their CISO a year after data breach, and for this week's Rippleshot content, we look at how hackers steal credit card information and what they do with it after. 

While the breadth of data being stolen in breaches has reached critical mass, the most valuable still remains payment card data - which is why many hackers still target it directly. Wondering how they do it? Follow along as we dive into the different ways fraudsters steal card information and how they then use it.

In this week's issue: the Montefiore Health System suffers a data breach, the Office of Personnel Management  data breach went undetected for a year, 15-30 percent of eCommerce sites infected with CISM, a potential breach at Hershey Park may have occured, and in this week's Rippleshot blog post, we take a look at data breaches and small businesses.

In 2013, we saw the start of a series of massive data breaches impacting organizations of all sizes, across a variety of industries. Ranging from retailer heavyweights such as Target, to regional grocery chains like Supervalu. In 2014, we saw organizations like Home Depot, JPMorgan Chase and eBay fall victim to a data breach, compromising a total of roughly 330 million personal records. 

In this week's issue: consumer call scams up are steadily increasing, a data breach was discovered at Fred's Super Dollar, Samsung Galaxy security exploit has been uncovered by security researchers, LastPass suffers a data breach, and for this week's Rippleshot blog post, we recap the Trustwave 2015 Global Security Report.

The introduction to Trustwave’s latest Global Security Report said it best - “Compromises are nothing new, of course, but 2014 just felt different.” Many called it the “Year of the Data Breach.” Many more were affected directly, with billions of personal records being compromised. But maybe most importantly, 2014 thrust data security into the public eye, forcing merchants, financial institutions, government and everyone in between to place a higher priority on breach prevention and detection.

Trustwave’s report provides a unique overview of the global security landscape, what trends emerged over the past year, and what the payments industry should keep an eye on moving forward.

In this week's issue: the Syrian Electronic Army claims responsibility for the U.S. Army Hack, a strain of POS malware could target any POS system, Eataly NYC confirms data breach, Kaspersky Lab hacked And this week's Rippleshot content, we recap Of The 2015 Ponemon Institute Cost Of A Data Breach Study.

The Ponemon Institute and IBM recently released its annual Cost Of Data Breach Study: Global Analysis, receiving contributions from over 350 organizations in 16 different industries in 11 countries that were involved in an event where an individual’s name plus a medical or financial record is potentially at risk.

Last Thursday, IBM and the Ponemon Institute hosted a webinar covering the findings from the 2015 report led by David Puzas, Director of Portfolio Marketing, Security Services at IBM and Dr. Larry Ponemon, Chairman and President of the Ponemon Institute.