Skip to Content

Prosecutors Describe Massive Breach of Credit Card Data

A giant case shows Russian hacker gangs remain a potent force, and provides fuel to arguments for mandatory sharing of computer attack information between industry and government.
July 26, 2013

A record-smashing, long-running data breach that involved 160 milllion credit and debit card numbers—stolen from Heartland Payment Systems, 7-Eleven, Carrefour, JC Penney, Hannaford, Wet Seal, Commidea, Dexia, JetBlue, Dow Jones, Euronet, Visa Jordan, Global Payment, Diners Singapore and Ingenicard—is likely to buttress the arguments for greater sharing of computer security information between companies and law enforcement agencies.

In announcing indictments Thursday, a federal prosecutor in New Jersey, Paul Fishman, called it “the largest hacking and data breach scheme ever prosecuted in the United States.”

Given that we’ve been reading about these massive breaches for years, it’s hard to see where existing security protections are really working.  House Republicans have been pushing a cybersecurity bill, known by the acronym CISPA, aimed at breaking down barriers to sharing intelligence on cyber threats between businesses, government, and law enforment.  But the bill, which the House passed earlier this year, allows private businesses to share customers’ personal information with government agencies, including the National Security Agency.  President Obama has threatened to veto it, but hasn’t needed to.  The Senate didn’t pass it, so it never reached his desk.

While Washington is as paralyzed as ever, cyber-criminal gangs are anything but.   The indictments are a reminder that while there’s been plenty of evidence of Chinese involvement in data-thefts, (see “Expose of Chinese Data Thieves Reveals Soppy Tactics,” ) it’s hard to top Russian criminal networks when it comes to straight-on cybercrime (see “Moore’s Outlaws”). The accused include four Russians and a Ukrainian.

Keep Reading

Most Popular

DeepMind’s cofounder: Generative AI is just a phase. What’s next is interactive AI.

“This is a profound moment in the history of technology,” says Mustafa Suleyman.

What to know about this autumn’s covid vaccines

New variants will pose a challenge, but early signs suggest the shots will still boost antibody responses.

Human-plus-AI solutions mitigate security threats

With the right human oversight, emerging technologies like artificial intelligence can help keep business and customer data secure

Next slide, please: A brief history of the corporate presentation

From million-dollar slide shows to Steve Jobs’s introduction of the iPhone, a bit of show business never hurt plain old business.

Stay connected

Illustration by Rose Wong

Get the latest updates from
MIT Technology Review

Discover special offers, top stories, upcoming events, and more.

Thank you for submitting your email!

Explore more newsletters

It looks like something went wrong.

We’re having trouble saving your preferences. Try refreshing this page and updating them one more time. If you continue to get this message, reach out to us at customer-service@technologyreview.com with a list of newsletters you’d like to receive.