Skip to main content
  1. News
  2. Business & Finance
  3. Personal Finance

Holiday breach list grows by 41 more companies, including gas station chains

See also

Several dozen small and medium-sized retailers in the United States, Australia, the U.K., Canada and Russia also appear to have been attacked in the year-end POS breaches. While less sophisticated than the malware that hit Target, Ukrainian hackers were able to steal 25 million records starting Oct. 25. The raids on the smaller retailers used a malicious software program dubbed ChewBacca.

RSA Security LLC discovered the theft when it found a large cache of stolen data according to an analysis posted on the company website on Jan. 30. Thankfully only about 50,000 customers were affected because the majority of the data records were either duplicates or unusable. The FBI has been notified.

The hacking attacks highlight the vulnerability of the point-of-sale, or POS, systems. According to The Nilson Report these systems process more than $3 trillion in U.S. transactions a year.

“Hopefully we’re learning the lesson that it is literally not possible to fully secure systems like these given how massively complex they are,” said Paul Henninger, global product director for BAE Systems Applied Intelligence, a security division of the U.K.-based defense company. “Over and over again, the bad guys keep finding a hole in the network.”

On Feb. 3 Congress will begin hearings about the recent POS breaches. You can expect specific, lengthy questions of company IT security experts and inquiries into ways to avoid the problem in the future.

In the past some retailers have pushed for the adoption of the chip-based smart card technology used in Europe for credit and banking cards. The Retail Industry Leaders Association will again try to get support from the banking industry for the change. PIN and chip cards are also known as EMV cards (Europay, Mastercard, Visa) and do not use magnetic strips and signature security. The PIN in smart cards can be encrypted so that card information is more secure even if hacked. The U.K has decreased fraud by 70 percent after implementing this card system.

Merchants paid $2.79 for each dollar of fraud losses in 2013, a 3.7 percent increase from 2012. Yet many retailers are reluctant to change to PIN and chip due to the cost of setting up the smart card system. Javelin Strategy estimated that the cost of implementing the EMV system might run $8.6 billion, about $400 to $600 per POS terminal.

The cost of creating and issuing new cards would fall on card issuers and banking industry and could well exceed $1.4 billion. However, it might prove a good long-term investment if hackers continue to attack card payment systems. Large card networks like Visa and Mastercard have set a deadline of Oct. 2015 for retailers to change to the PIN/chip system.

It took Canada more than seven years to change and it will be significantly more complex in the U.S. David Hogan, executive technology advisor for the National Retail Federation, predicts it could take 10 or more years to transition to the EMV system.

Advertisement

News

  • Pro-Russians killed
    Putin issues a warning after 3 armed protestors were shot dead in Ukraine
    Video
    Watch Video
  • Korean ferry capsizes
    Only one of 46 life boats were used in the South Korean ferry sinking
    World News
  • Oscar Pistorius trial
    Oscar Pistorius reads a Valentines Day card from his deceased girlfriend without tears
    Crime News
  • Google patent
    Google applies for patent for what could be the successor to Google Glass
    Tech News
  • 420 in Colorado
    Colorado will celebrate 420 for the first time since marijuana became legal
    Headlines
  • Racist Kansas murderer
    Why isn't the Jewish Community Center shooter being labeled as a terrorist?
    Video
    Watch Video

Related Videos:

  • Michaels Stores confirms payment card breach occurred in 2013
    <div class="video-info" data-id="518099874" data-param-name="playList" data-provider="5min" data-url="http://pshared.5min.com/Scripts/PlayerSeed.js?sid=1304&width=480&height=401&playList=518099874&autoStart=true"></div>
  • Super Smash Bros adds Pokemon Greninja and Charizard to lineup
    <iframe width="560" height="315" src="//www.youtube.com/embed/KrWL4EuCp5E?VQ=HD720&amp;autoplay=1"></iframe>
  • Windows 'XPires': 400 million active users worldwide left vulnerable to hacking
    <div class="video-info" data-id="518185850" data-param-name="playList" data-provider="5min" data-url="http://pshared.5min.com/Scripts/PlayerSeed.js?sid=1304&width=480&height=401&playList=518185850&autoStart=true"></div>

User login

Log in
Sign in with your email and password. Or reset your password.
Write for us
Interested in becoming an Examiner and sharing your experience and passion? We're always looking for quality writers. Find out more about Examiner.com and apply today!