According to Noodles & Company (“Noodles”), it received information from Visa that Visa cards used by customers at its fast-food chains since January have “possibly” been compromised. It is presently investigating unusual...more
On September 29, 2015, the PCI Security Standards Council (“PCI SSC”) issued a press release and accompanying guidance to businesses for incident response management in the event of a data breach. PCI SSC is a global forum...more
Card-issuing banks are forging ahead with their lawsuit against Target arising from the 2013 holiday shopping season data breach. Their July 1 motion for class certification has just been unsealed, allowing a glimpse at...more
Visa, Inc. announced on August 18th that it has reached a settlement with Target for $67 million to reimburse Visa for costs associated with the Target data breach in late 2013, including issuing millions of new cards to...more
The Consumer Protection Principles continue the CFPB’s expansive approach. Stating that it wants to ensure that “any new payment systems are secure, transparent, accessible, and affordable to consumers” and have “robust...more
It’s a familiar pattern. First, new risks inspire legislation and regulations that impose new penalties. Next, insurers and policyholders fight over whether the new liabilities are covered under traditional liability...more
Preventing the unauthorized access to and fraudulent use of credit and debit cards has been a high priority of the payment card industry for years. As the threat environment evolves, so too do the applicable data security...more
Visa and MasterCard announced in late February plans to support cloud-based mobile payments through a new feature in the Android mobile operating system called Host Card Emulation (HCE). HCE leverages Near Field Communication...more