Michaels Stores Investigating Possible Data Breach 106
tsu doh nimh writes "Michaels Stores Inc., which runs more than 1,250 crafts stores across the United States, said Saturday that it is investigating a possible data breach involving customer cardholder information. According to Brian Krebs, the journalist who broke the story [and, previously] news of the Target and Neiman Marcus breaches, the U.S. Secret Service has confirmed it is investigating. Krebs cited multiple sources in the banking industry saying they were tracking a pattern of fraud on cards that were all recently used at Michaels Stores Inc. In response to that story, Michaels issued a statement saying it 'recently learned of possible fraudulent activity on some U.S. payment cards that had been used at Michaels, suggesting that the Company may have experienced a data security attack.' In 2011, Michaels disclosed that attackers had physically tampered with point-of-sale terminals in multiple stores, but so far there are no indications what might be the cause of the latest breach. Both Target and Neiman Marcus have said the culprit was malicious software designed to steal payment card data, and at least in Target's case that's been shown to be malware made to infect retail cash registers."
Credit cards (Score:2, Insightful)
Way too easy to commit fraud. Pay cash for small purchases. And stop giving stores your name for loyalty cards or marketing
Chip & Pin (Score:5, Insightful)
Seriously... Why have the US banks not rolled Chip & Pin out yet? This wouldn't be an issue if they had, and it's almost certainly costing them a lot more in refunded transactions than a roll out would have.
Re:Point of Sale Network Access (Score:0, Insightful)
There's an even easier solution: don't store cardholder information in a database
There is no need to save credit card numbers, expiration dates, CVV2 codes, and personally identifiable information once the authorization of charge has been obtained. None whatsoever.
Getting an auth code means you're getting your money. You don't need to store my entire credit card number.
Re: This is because CONservatives... (Score:2, Insightful)
CONservatives vs LIEberals or REPTILEcans vs DEMONcrats; you make the call.
Re: This is because CONservatives... (Score:2, Insightful)