Lawsuit: Heartland Knew Data Security Standard was ‘Insufficient’

Complaint Says CEO Described PCI as ‘Lowest Common Denominator’ of ProtectionMonths before announcing the Heartland Payment Systems (HPY) data breach, company CEO Robert Carr told industry analysts that the Payment Card Industry Data Security Standard (PCI DSS) was an insufficient protective measure. This is the contention of a new master complaint filed in the class action suit against Heartland, which in January announced a data breach that is now estimated to be the largest known hack, involving 130 million credit and debt card accounts.

Originally posted here:
Lawsuit: Heartland Knew Data Security Standard was ‘Insufficient’