On Metacritic: Dante's Inferno: Not as good as we hoped
BNET Business Network:
BNET
TechRepublic
ZDNet

January 20th, 2009

Heartland finds malware in bank card payment system

Posted by Ryan Naraine @ 11:29 am

Categories: Anti Virus, Arbitrary Code Execution, Browsers, Complex Attacks, Data theft, Exploit code, Malware, PCI, Passwords, Pen testing, Responsible disclosure

Tags: Bank, Payment, Malware, Fraud Operation, Spyware, Adware & Malware, Cyberthreats, Operational Accounting, Viruses And Worms, Financial Services, Security

Heartland finds malware in payment systemHeartland Payment Systems, a publicly traded company that provides bank card payment processing services to merchants in the U.S., has suffered a malware breach that may be linked to a “widespread global cyber fraud operation.”

In a statement (see Adam O’Donnell’s coverage), the company said its system used to process Visa, MasterCard, American Express and Discover Card transactions was breached last year but insists that customer and merchant data was not affected.   From the statement:

“We found evidence of an intrusion last week and immediately notified federal law enforcement officials as well as the card brands,” said Robert H.B. Baldwin, Jr., Heartland’s president and chief financial officer. “We understand that this incident may be the result of a widespread global cyber fraud operation, and we are cooperating closely with the United States Secret Service and Department of Justice.”

No merchant data or cardholder Social Security numbers, unencrypted personal identification numbers (PIN), addresses or telephone numbers were involved in the breach. Nor were any of Heartland’s check management systems; Canadian, payroll, campus solutions or micropayments operations; Give Something Back Network; or the recently acquired Network Services and Chockstone processing platforms.

After being alerted by Visa and MasterCard of suspicious activity surrounding processed card transactions, Heartland enlisted the help of several forensic auditors to conduct a thorough investigation into the matter. Last week, the investigation uncovered malicious software that compromised data that crossed Heartland’s network.

The mention of a “widespread global cyber fraud operation” suggests that investigators may have a link to previous breaches at Hannaford and TJX and confirms widely held beliefs that malware authors are using specialized attacks to hit high-profile payment systems targets.

See more from Brian Krebs at WaPo’s SecurityFix.

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 27 Talkback(s)
RE: Heartland finds malware in bank card payment system
Makes me wonder. Is it SAFE to purchase anything on-line? I had my card number stolen and someone charged to my account. I never have been to their site; never authorized it; and have no interest in t... (Read the rest)
Posted by: Sirgwain Posted on: 01/26/09 You are currently: a Guest | | Terms of Use
Message has been deleted.  David GroberZDNet Moderator | 01/20/09
Hilarious  Jack-Booted EULA | 01/20/09
Re: Hilarious  MrViklund | 01/21/09
I have no idea  Jack-Booted EULA | 01/21/09
Custom Malware?  rtk | 01/20/09
custom soft- er, malware  Too Old For IT | 01/21/09
Yeah, nothing like a healthy layoff  Telexer | 01/21/09
www.2008breach.com  jtwaldo | 01/21/09
An answer to your wonderment:  Betelgeuse58 | 01/21/09
RE: Heartland finds malware in bank card payment system  kkrys | 01/21/09
RE: Heartland finds malware in bank card payment system  The Smoking Man | 01/21/09
abstract ideals  zorfor | 01/21/09
Smoking Man - You frigging  sackbut | 01/21/09
Could it be...  SpikeyMike | 01/21/09
non-professional comments  cab@... | 01/21/09
Responding to someone who uses the term...  SpikeyMike | 01/21/09
They do exist  914four | 01/21/09
About the high cost of using Windows..  User07734 | 01/21/09
RE: Heartland finds malware in bank card payment system  jhussher@... | 01/21/09
RE: Heartland finds malware in bank card payment system  wsmith@... | 01/21/09
Very active counterfeit  dea0002 | 01/21/09
Not surprisingly this pops up now...  dutchroy@... | 01/21/09
Great post  wbrodyjr | 01/22/09
Very interesting  Me_too | 01/22/09
RE: Heartland finds malware in bank card payment system  visa/mc | 01/22/09
RE: Heartland finds malware in bank card payment system  Sandra_Jean | 01/23/09
RE: Heartland finds malware in bank card payment system  Sirgwain | 01/26/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here