Re: credit card hack, 175,000 cards

[Allison Dolan <adolan () MIT EDU>]

Actually, they don't know the scope yet.

The Washington Post/Krebs item had the most detail of the stories I
read.  One extract
"The transactional data crossing our platform, in terms of
magnitude... is about 100 million transactions a month," Baldwin
said. "At this point, though, we don't know the magnitude of what was
grabbed."

Allison F. Dolan
Program Director, Personally Identifiable Information
Massachusetts Institute of Technology
77 Massachusetts Ave  NE49-3021
Cambridge MA 02139-4307
Phone: (617) 252-1461
http://mit.edu/infoprotect



On Jan 21, 2009, at 12:57 PM, Di Fabio, Andrea wrote:

> The number of cards is still unknown as per http://datalossdb.org
>
> http://datalossdb.org/incidents/1518-malicious-software-hack-
> compromises-unk
> nown-number-of-credit-cards-at-fifth-largest-credit-card-processor
>
>
> Andrea Di Fabio
> Information Security Officer
> High Performance Computing Technology Coordinator
> Norfolk State University
> Office of Information Technology
> Marie V. McDemmond Center for Applied Research, Rm 401F
> 555 Park Avenue, Suite 401
> Norfolk, Virginia 23504
> 757-823-2896 Office
> 757-823-2128 Fax
>
>
> -----Original Message-----
> From: The EDUCAUSE Security Constituent Group Listserv
> [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Theresa Semmens
> Sent: Wednesday, January 21, 2009 12:44 PM
> To: SECURITY () LISTSERV EDUCAUSE EDU
> Subject: [SECURITY] credit card hack, 175,000 cards
>
> Pretty serious stuff...
>
> http://abcnews.go.com/Business/PersonalFinance/Story?id=6695611&page=2
>
> I wonder if their PCI certification was revoked?  ;-)
>
> Theresa Semmens, CISA
> NDSU IT Security Officer
> PO Box 6050
> North Dakota State University
> Fargo, ND 58108
> Phone: 701-231-5870
> FAX: 701-231-8541
> Theresa.Semmens () ndsu edu
>
> Everybody is a genius. But if you judge a fish by its ability to
> climb a
> tree, it will live its whole life believing that it is stupid.
> -Albert Einstein