This incident has 0 proposed changes. Know of details that have changed? Submit them Showing Incident 1305 To_xml

SUMMARY

1.5 million credit card records compromised via hack
Records 1,500,000
Record Types CCN SSN
Breach Type Hack
Data Family Electronic
Source Unknown
Organization RBS Worldpay
Other Affected/Involved Organizations None
Lawsuit? YES
Data Recovered? NO/UNKNOWN
Arrest? NO/UNKNOWN
Submitted By: securityninja

TIMELINE

DateEvent
2008-11-10 Incident Occurred
None. Add Data Incident Discovered By Organization
2008-12-23 Organization Reports Incident
2008-12-23 Organization Mails Notifications
None. Add Data Records Recovered
2009-02-18 Lawsuit Filed
None. Add Data Arrest Made

SIMILAR INCIDENTS

recordsdateorganizations

MAP OF INCIDENT LOCATION

Address: United States
Have a better address for this incident? Suggest it!

suggest a new reference

REFERENCES

suggest a new attachment

ATTACHMENTS

COSTS SUMMARY

Known Actual Costs

No known costs for this incident.

Estimated Costs

Ponemon Institute Direct Costs Estimate 1 $90,000,000.00
  1. Note that these estimates are based on the Ponemon Institute's 2009 direct costs figures from their 2009 Annual Study: Cost of a Data Breach. We multiply $60.00 by the number of records to obtain this figure. Keep in mind that depending on the breach, the direct costs are not always suffered by the breached organizations. In the case of credit card number breaches, the direct costs can often be suffered by banks and card issuers. Also note that this is only an estimate.

PRIMARY SOURCES

Primary Source ID: 2147

add details to this primary source Description
Massachusetts Data Breach Notification : Hacked website reveals personal credit card information.
FilenameSourceResearcher Incident IDs
20081223_RBS_worldpay_MA.pdfMassachusetts Attorney Generald2d 1305
RecordsFile DateUploadedUpdated
39858 2008-12-23 2009-08-08 24 Sep 12:14
Excerpt
2147

Click here for the Full Details | Download Raw PDF

COMMENTS

by jericho [Senior Investigator] on 2009-01-23 (about 1 year ago)

http://usa.visa.com/download/merchants/cisp-list-of-pcidss-compliant-service-providers.pdf

Service Provider: RBS WorldPay Inc.
Validation Date: July 31, 2008
Services Covered by Review: Merchant Payment Services
Assessor: Trustwave

by d2d [Data Loss Maven] on 2009-02-03 (about 1 year ago)

Per the RBS worldpay PDF, 1.1 million SSN's affected.

New Comment

simple_captcha.jpg
(type the code from the image)

Incidents:

Data Types:

Sectors:

Sources:

Breach Types:

Sponsored By: Credant_200x51 Tenable Pgp_logo Zecurion
Permission is granted to use this database in non-profit works and research. Use of the DataLossDB, and its exports, RSS feeds, reports, or other materials produced on this site by the Open Security Foundation for commercial interests requires authorization and licensing arrangements. For more information, please e-mail curators@datalossdb.org with a brief summary of how you would like to use this information; product, service, research, etc.
© 2005 - 2010, Open Security Foundation, All Rights Reserved.