follow-up: Heartland Data Breach: Visa Sets Deadline for Issuers to File Fraud Claims

[security curmudgeon <jericho () attrition org>]

---------- Forwarded message ----------
From: InfoSec News <alerts () infosecnews org>

http://www.bankinfosecurity.com/articles.php?art_id=1277

By Linda McGlasson
Managing Editor
Bank Infosecurity
March 16, 2009

Heartland Payment Systems (HPY) has been removed from Visa's list of 
compliant service providers, and banking institutions affected by the 
Heartland data breach have until May 19 to file their fraud claims with 
Visa.

This news emerged late last week from a public statement by Visa, as well 
as from a letter sent by the credit card company to card-issuing banking 
institutions.

In the statement, Visa confirmed that both Heartland and RBS WorldPay as a 
result of their recent data breaches, have been removed from the company's 
Payment Card Industry Data Security Standard (PCI DSS) Compliant Service 
Providers list. This list represents the service providers that Visa has 
validated as being PCI DSS compliant for merchants and other businesses to 
run their credit card transactions.

Heartland and RBS WorldPay are now considered to be "on probation," and 
can apply to be relisted once they revalidate PCI DSS compliance and meet 
other security stipulations.

[...]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)

CREDANT Technologies, a leader in data security, offers advanced data encryption solutions.
Protect sensitive data on desktops, laptops, smartphones and USB sticks transparently 
across your enterprise to ensure regulatory compliance.
http://www.credant.com/stopdataloss