Another week, another embarrassing IT security breach. Now a congressman wants to shine a spotlight on the companies responsible when customer data is lost.
Visa confirmed last week that an unidentified merchant reported a possible data-security beach, and major banks are sending letters to customers and issuing new credit and debit cards. The FBI and state officials are investigating the incident, which the San Francisco Chronicle said involves the theft of 200,000 card numbers that were used to create counterfeit cards. Visa, the nation's largest credit card company, said in a statement that cardholders are covered "by Visa's zero-liability fraud-protection policy."
What was stolen, how, and from which merchant wasn't disclosed. But the never-ending string of data losses has prompted Rep. Barney Frank, D-Mass., to suggest ways to embarrass companies in charge of security systems that get hacked. Those companies should be required to notify customers or be named as the party responsible for the breach, he says.
"If this cannot be done legally at present, I feel strongly enough on this point to make legislative changes to make this a requirement," Frank, the senior Democrat on the house financial services committee, wrote to Visa and MasterCard.
Visa responded that naming names before an investigation is complete "could be inaccurate and unfair" and would make companies reluctant to share information. But if these fiascos keep happening, customers may become reluctant to trust credit cards and merchants altogether.
How Enterprises Are Attacking the IT Security EnterpriseTo learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Infographic: The State of DevOps in 2017Is DevOps helping organizations reduce costs and time-to-market for software releases? What's getting in the way of DevOps adoption? Find out in this InformationWeek and Interop ITX infographic on the state of DevOps in 2017.
IT Strategies to Conquer the CloudChances are your organization is adopting cloud computing in one way or another -- or in multiple ways. Understanding the skills you need and how cloud affects IT operations and networking will help you adapt.