[Owasp-codereview] Potential of 4.2 million credit card details stolen via cyber attack.

Eoin eoin.keary at owasp.org
Tue Mar 25 06:26:03 EDT 2008


Maybe a bit slow on this one but I'd thought I'd share it

A PCI compliant company was compromised and an estimate of 4.2 million cc
numbers were obtained.
The issue arises that the company were PCI compliant and now the blame game
has ensued. The PCI assessors are being blamed, there is mention of
ambiguity regarding the PCI standard, where to apply some of the technical
controls etc..

http://www.theregister.co.uk/2008/03/18/hannaford_data_breach/


http://www.hannaford.com/Contents/News_Events/News/News.shtml


http://www.merchantcircle.com/blogs/Pre-Paid.Legal.Services.Inc.-.Ind.Associate.786-390-0581/2008/3/4.2-million-account-numbers-stolen-at-Hannaford-Bros.-Co./70643
-- 
Eoin Keary OWASP - Ireland
http://www.owasp.org/local/ireland.html
http://www.owasp.org/index.php/OWASP_Code_Review_Project
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-codereview/attachments/20080325/6d3556e4/attachment.html 


More information about the Owasp-codereview mailing list