This site uses cookies. By continuing to browse this site you are agreeing to our use of cookies. Find out more.X

Global Payments says that less than 1.5m accounts impacted by breach

Share this article:

A breach affecting Visa and MasterCard has been laid at the feet of payment processor Global Payments.

In a statement, Global Payments announced that it identified and reported unauthorised access to a portion of its processing system. Chairman and CEO Paul R. Garcia said: “In early March, the company determined card data may have been accessed. It immediately engaged external experts in information technology forensics and contacted federal law enforcement.

“The company promptly notified appropriate industry parties to allow them to minimise potential cardholder impact. The company is continuing its investigation into this matter.

“It is reassuring that our security processes detected an intrusion. It is crucial to understand that this incident does not involve our merchants or their relationships with their customers.”

Visa and MasterCard began investigating a major breach of credit-card numbers at a payment processor, with Visa saying it was "aware of a potential data compromise incident at a third-party entity affecting credit-card account information from all major card brands".

Neither card brand has named the compromised entity, but on Friday a Wall Street Journal story pinned the blame on Atlanta-based Global Payments. The report said some 50,000 cards were impacted, but security blogger Brian Krebs said the number could reach ten million.

Avivah Litan, vice-president and distinguished analyst at Gartner, told SC Magazine US that her sources within the payment industry have told her the breach was sustained by a New York City-based taxi cab and garage parking company, and was the work of a Central American gang.

A city Taxi and Limousine Commission spokesman, Allan Fromberg, told SC Magazine US that he wasn't aware of any breach, but said there were 65 so-called "medallion agents" who lease taxi cabs to drivers. They serve as merchants and contract with third parties to process cab fares that are paid with credit cards.

Visa, in its statement, said it was contacting "payment card issuers" with information about card numbers that may have been compromised.

Visa also pulled its seal of approval for the Visa also pulled its seal of approval for the taxi cab company, saying that the breach has affected less than 1.5 million accounts and that the incident is "contained".

Global Payments said that its investigation has revealed to date that Track 2 card data may have been stolen, but that cardholder names, addresses and social security numbers were not obtained by the criminals.

Share this article:

SC webcasts on demand

This is how to secure data in the cloud


Exclusive video webcast & Q&A sponsored by Vormetric


As enterprises look to take advantage of the cloud, they need to understand the importance of safeguarding their confidential and sensitive data in cloud environments. With the appropriate security safeguards, such as fine-grained access policies, a move to the cloud is as, or more, secure than an on-premise data storage.


View the webcast here to find out more

More in News

Cyber security still a learning curve for most companies

Cyber security still a learning curve for most ...

Poor network visibility, outdated security tools, a skills shortage and a lack of control in the cloud are just some of the reasons companies are struggling with cyber-security, say two ...

WorldPay hacker sentenced to 11 years for role in £6 million scheme

WorldPay hacker sentenced to 11 years for role ...

An Estonian man, who helped hack payment processor RBS WorldPay in 2008, has now been sentenced to 11 years in prison for his involvement in the £5.9 (US$ 9.4 million) ...

'Sophisticated' Chinese hackers launched attacks against 43,000 computer systems

'Sophisticated' Chinese hackers launched attacks against 43,000 computer ...

A new report reveals that a Chinese cyber-espionage group is closely affiliated with government and carried out attacks against the likes of Fortune 500 companies and government agencies.