News & Analysis as of

Issuer Banks’ Claims in Target Data Breach Litigation Survive Motion to Dismiss

Federal District Judge Paul Magnuson has ruled that banks that issued credit and debit cards to customers whose data was stolen in the December 2013 Target data breach could continue to litigate claims against Target for...more

Privacy Tuesday - November 2014

Welcome to the first Tuesday in November — don’t forget to vote tomorrow! Chip-and-Pin Not Likely “Cure-All” - There is good news in the world of retail data breaches: US merchants are finally moving away from...more

California Attorney General Releases Data Breach Report with Recommendations for Retailers and the Health Care Sector

On October 28, 2014, the California Attorney General (“AG”) released its second annual report detailing the security breaches reported to the AG’s office in 2013, and provided recommendations to both the industry and...more

Improving Data Breach Security, from the Customer’s Wallet on Up: In Wake of Massive Breaches, It May be Time to Consider...

In early September, Home Depot announced that it had suffered a severe security incident, which resulted in a massive data breach that exposed the payment card information of Home Depot customers across the United States and...more

Alert: The "Chip-and-PIN" Executive Order

On Friday, October 17, Obama signed his second major cyber-related executive order in the past two years. This most recent EO, entitled "Improving the Security of Consumer Financial Transactions," focuses squarely on the...more

Banking & Financial Services E-Note - September 2014

In This Issue: - CFPB to Regulate Nonbank Institutions That Fund Auto Loans - DOJ Suggests Banks Turn In Employees to Avoid Criminal Charges - Regulators Requiring Banks to Carry Higher Capital...more

Release of the iPhone 6 — Is Apple Riding the Security Wave?

Another month brings another reported massive data breach. On September 8, 2014, Home Depot confirmed that its payment data systems had been breached, potentially impacting customers using payment cards at the retailer’s US...more

Back -to- School 2014

In mid-August Jewel-Osco announced that its computers, containing credit and debit card information, had suffered an “unlawful intrusion”. They are but the latest retailer to do so with the list that now includes CVS, Home...more

Another day, another data breach…..DIYers, beware. This time it’s Home Depot.

It appears that the data breach victim of the week (perhaps of the year) is The Home Depot. Brian Krebs has reported that it appears that two large dumps of purloined credit card numbers have made an appearance on the black...more

Nebraska Federal Court Refuses To Dismiss Suit Claiming Breach Of Contract, Violation of State Law for Unauthorized Credit Card...

On August 20, the U.S. District Court for the District of Nebraska denied motions to dismiss filed by a Nebraska bank and two credit card processing companies in response to a purported class action filed by a merchant...more

Week in Review

Significant electronic data breaches made headlines again this week. Supervalu announced that millions of customer credit card numbers were stolen at various stores. ...more

What’s Old is New Again—Insecure Remote Access

When a merchant is suspected of being the victim of an account data compromise event, they are often required by the card brands to hire a Payment Card Industry Forensic Investigator (PFI). The PFI provides a report on the...more

Cybersecurity: Litigation, Crime & Enforcement

On December 19, 2013, Target publicly announced it had experienced a data security breach via malware installed on its point-of-sale network. Forty million customer credit and debit card numbers, encrypted PINs, and CVV codes...more

California Considers Data Breach Bill Imposing Significant New Obligations on Businesses

Who should be responsible for paying for the costs of data breaches? - Reacting to the recent high-profile security lapses at major retailers, California lawmakers are considering a bill that would shift the burden of...more

New Report on PCI-DSS Compliance Finds Room for Improvement

Data breaches are increasingly common, with an estimated $11 billion in global credit-card fraud in 2012 alone. Yet according to a new report, many organizations still fail to take the necessary security measures to prevent...more

Commercial Financial Services Brief: Can My Bank Recover Costs Related to Replacing Debit or Credit Cards?

Many financial institutions are counting the costs they are incurring for replacing customer debit or credit cards as a result of recently discovered security breaches at various national retailers. These costs will be...more

Scammers Continue to Target Customers

There have been numerous reports that West Virginia Attorney General Patrick Morrisey issued a warning to consumers on Monday, January 13, 204, about a Target gift card scam occurring throughout the country on social media...more

The Target and Neiman Marcus breaches: What hoteliers need to know

The Target and Neiman Marcus problem. The massive security breach of Target's customer data may affect more than 110 million Americans -- potentially about 1 in 3 persons living in the United States. Followed in quick...more

The Number of The Day: 70 Million (at least)

The Target data breach story keeps getting worse. The December pre-Christmas disclosure was the theft of up to 40 million Target shoppers’ credit and debit card information in what appeared to have been a hack of the Target...more

On the 11th Day of Privacy, class counsel served on me……

. . . a data breach class action. Hackers and plaintiffs’ lawyers could combine to make 2014 the year when class actions concerning theft of sensitive information proliferate. On this 11th Day of Privacy, we look...more

Are You a Target?

As has been widely reported, the popular retail giant Target announced yesterday that it suffered a data breach impacting approximately 40 million credit and debit card accounts used in Target stores across the country...more

Updated Data-Security Standards for Credit-Card Transactions

New security standards are scheduled to be released by the PCI Security Standards Council on November 7th. The updated standards are expected to require companies to protect credit-card terminals from physical tampering and...more

Federal Court Dismisses Action Brought by Data Breach Plaintiffs for Failure to Demonstrate Injury Under Clapper

On September 3, 2013, the U.S. District Court for the Northern District of Illinois dismissed a class action complaint arising from a credit card “skimming” attack suffered by Barnes & Noble in 2012. U.S. District Judge John...more

Class Action Plaintiffs Lack Standing under Clapper to Sue Barnes & Noble for Credit Card Data Breach

Relying heavily on the Supreme Court’s recent Clapper decision, a federal court dismissed a class action lawsuit arising out of a “skimming” data breach against Barnes & Noble (BN)....more

FTC’s Authority to Police Data Security Practices Challenged

Hotelier Wyndham Worldwide Corp’s motion to dismiss an FTC lawsuit alleging lax data security practices is likely to have significant implications for the agency’s ability to police cybersecurity practices at American...more

27 Results
|
View per page
Page: of 2