Target and Trustwave Sued Over Credit Card Breach 87
jfruh (300774) writes "Security vendors like Trustwave can make big bucks when major companies decide they don't have the internal resources to handle their cybersecurity needs. Unfortunately, when taking on security chores, you also take on security liabilities. In the wake of Target's massive credit card security breach, both Target and Trustwave are now on the receiving end of a class action lawsuit, in part backed by banks that had to issue thousands of new credit cards."
The filing, and a bit more from El Reg: "It's against Target, however, that the most serious allegations are levelled. The class action led by Trustmark National Bank and Green Bank, say the retailer should not have allowed an outside contractor the access to its network that brought about the breach, and that it violated federal and state laws in storing the credit card data on its network."
Complaint against Trustwave by tbehme8826
Sad to see it takes a lawsuit ... (Score:5, Insightful)
... for companies to get their shit together about their lax security policies.
It is too bad temp credit cards (1-time use, 3-time use) aren't more practical.
Banks are responsible too (Score:5, Insightful)
Banks hold some of the responsibility too -- why are they still issuing cards with 1970's era magstripe technology that is so easily intercepted and stolen? They claim that the merchants don't want to pay to install new credit card readers, yet only the banks have the power to force it on them (through fee penalties for those still use magstripes, or an outright mandate requiring new scanners). Even merchants that *want* to use safer technology can't do anything to make the banks issue the new cards.
SSDD (Score:4, Insightful)
Re:Mandatory arbitration? (Score:4, Insightful)
I would have thought a coupon for a free pizza a drink would have been enough. It's not like Target blew up a town, they just lost some CC#s. On second thought, maybe just a free drink with your next purchase.
Re:Banks are responsible too (Score:2, Insightful)
Speaking as a Canadian with chip&pin credit cards that have been used on-line, chip & pin isn't supported.
You key your credit card number in 1 field
You key your 3 digit "security code" (printed on the back of the card) in a different field.
You don't use your personal pin anywhere on-line to purchase things ... and of course the chip doesn't come into play at all.