WASHINGTON - (07/25/05) -- The massive data breach atCardSystems Solutions that jeopardized millions of card accountsaround the country this spring was carried out with the use of acomputer sophisticated computer script, a non-invasive trackingdevice that was implanted in company computers by a remotethird-part computer hacker. In contrast to viruses and worms whichduplicate indiscriminately and tend to destroy computer files, thescript atached itself to specific files at Card Systems andextracted, zipped into a file, and exported the company'sconfidential consumer files to a third-party website. The versionof perhaps the largest breach of online data ever was explained tomembers of Congress last week by CardSystems CEO, John Perry duringhearings before the House Financial Services Committee. Theembattled CEO told lawmakers the script was designed to run on thecompany's system and to run every four days. The invisible scriptwould search the company's computer server for records with trackdata--the data recorded on a card's magnetic stripe--which containsidentifying data. But because the data does not include thecardholder's social security number, company officials believethere is little or no risk of identity theft resulting from themass intrusion of the company's computer systems. The data storedin the files that were exported by the hackers was informationstored from transactions that had not been completed and were beingheld for research purposes, according to Perry. The storage of thetransaction data, which Perry insisted the company has stopped, wasprohibited for third-party processors such as CardSystems under thecard industry's voluntary security rules, known as Payment CardIndustry Data Security Standard, or PCI.
-
Liberty Bank in Salt Lake City had been "structurally unprofitable" since 2008, according to its regulators. Experts criticized the FDIC for allowing the bank's demise to play out in slow motion.
4h ago -
The New York-based bank says it will push its concentration of commercial real estate loans below 400% of risk-based capital over the next two years and focus more on C&I.
5h ago -
The San Francisco-based firm's Anchorage Digital Trusted Liquidity and Settlement network, better known as Atlas, will allow clients to settle a range of cryptocurrency transactions.
8h ago -
Consumer spending slowed and charge-offs rose during the first quarter, but Bread Financial said a pending late-fee rule may not be as devastating to its revenue as the Columbus, Ohio-based firm initially feared.
10h ago -
Artificial intelligence models are energy hogs. Climate First Bank and UBS are among the very few trying to solve this problem.
10h ago -
The FDIC board debated and ultimately withdrew two separate proposals to address asset managers' control over banks, but acting Comptroller of the Currency Michael Hsu said he couldn't support either and called for more research and debate about how asset managers' control over banks impacts safety and soundness.
11h ago