Tag Archives: payment card industry

Settlement Reached Between Neiman Marcus and State Attorneys General for $1.5 Million for 2013 Payment Card Breach

By Aaron Lancaster and Sara Goldstein on January 18, 2019 Posted in Data Breaches, Incident Response

Last week, the attorneys general (AGs) of 43 states and the District of Columbia announced they reached a $1.5 million settlement with Neiman Marcus Group LLC to resolve an investigation of a 2013 data breach that involved the payment card information of thousands of customers. On Jan. 10, 2014, Neiman Marcus publicly announced that it … Continue Reading

New PCI Guidance Provides Businesses With Security Incident Response Assistance

By Kathryn Mellinger on October 8, 2015 Posted in Data Breaches, Payment Card Industry, Retail Industry

A security event involving payment card data, especially card present data, can be one of the most costly events a company may face. Not only did a recent study report the average total cost of a data breach as $3.8 million, large payment card incidents such as those that occurred at Target and Home Depot … Continue Reading

FBI Issues Cyber Attack Warning to Retailers: Is Chip and PIN the Answer?

By Eric A. Packel on February 1, 2014 Posted in Payment Card Industry

The FBI’s Warning: Point-of-sale (POS) systems are under attack. In the wake of breaches at Neiman Marcus, Target and other stores over the 2013 holiday season, the FBI is now warning retailers to expect similar cyber attacks in the coming months. The warning came in the form of a 3 page report distributed to numerous … Continue Reading

UPDATE: If There is Credit Card Fraud, There Must Have Been a Breach

By Craig A. Hoffman on May 30, 2012 Posted in Data Breaches, Payment Card Industry

As we reported in December 2010, after an online merchant suffered chargeback losses of almost $12,000 on nine fraudulent orders, it sued the bank that issued the nine cards that were fraudulently used alleging that the most likely cause of the fraud was a data security breach at the bank that the bank ignored. The merchant … Continue Reading

Restaurant Group Pays $110,000 to Settle Lawsuit Alleging a Failure to Secure Payment Card Data

By Craig A. Hoffman on April 7, 2011 Posted in Payment Card Industry

In a February co-post with Baker Hostetler’s Hospitality Lawg, we wrote about security breach reports that continued to show hospitality and restaurant groups as favorite targets of hackers. Two of the factors we cited as explanations for their vulnerability—failure to secure wireless networks and not complying with the Payment Card Industry Data Security Standard (PCI … Continue Reading

Hospitality and Food and Beverage Industries Still Targets of Hackers

By Craig A. Hoffman on February 21, 2011 Posted in Data Breaches, Information Security, Payment Card Industry

This entry was also posted on the Hospitality Lawg—a Baker Hostetler blog featuring commentary on hospitality law, news, and developments. It should no longer come as a surprise that the hospitality and food and beverage industries are favorite targets of hackers. Indeed, some commentators have suggested that hackers view these industries as the low-hanging fruit. … Continue Reading