Heartland Data Breach: TJX Hacker Indicted for Crime

Credit EligibleAs a BankInfoSecurity.com annual member, this content can be used toward your membership credits and transcript tracking. Click For More Info

The Department of Justice and federal prosecutors on Monday indicted a Miami, FL man in connection with the biggest credit card data breach on record -- the theft of 130 million card numbers from Heartland Payment Systems, along with two other recent high-profile hacks, Hannaford Brothers and the 7-Eleven data breaches of 2008.

The 28-year-old Albert Gonzalez, already in federal custody, was previously charged in two other data breaches, including the theft of 40 million credit card numbers from retailer TJX.

According to the Justice officials, Gonzalez was charged with conspiracy and wire fraud, along with two unnamed co-conspirators located in Russia, accused of using the hacking technique called an SQL injection attack to breach the network firewalls of Heartland, 7-Eleven and Hannaford Brothers.

The indictment alleges that Gonzalez and two Russian co-conspirators sent the stolen data to computer servers they operated in California, Illinois, Latvia, the Netherlands and Ukraine.

Gonzalez is also facing charges in New York for the hacking of Dave and Buster's, a national restaurant chain. Trial on those charges is scheduled to begin in September.

Click to Get Updates on the Latest Information Security News

Company* Title* Email* Subscription Type: HTML Text Healthcare Enews General Healthcare Enews Blogs Enews Careers Enews Training Enews Webinars Enews Podcasts Enews White Papers Enews Government Enews General Government Enews Blogs Enews Careers Enews Training Enews Webinars Enews Podcasts Enews White Papers Enews Banking Enews General Banking Enews Blogs Enews Careers Enews Training Enews Webinars Enews Podcasts Enews White Papers Enews Credit Union Enews General Credit Union Enews Blogs Enews Careers Enews Training Enews Webinars Enews Podcasts Enews White Papers Enews Need Help?

Gonzalez is set to be tried in Massachusetts in 2010 for the theft of 40 million credit card numbers from TJX in 2005 and 2006. He was arrested in May, 2008 for the TJX hack. He had previously been arrested by federal investigators in 2003 and was acting as an informant while he was conspiring with his criminal crew to hack TJX, Hannaford, Heartland and the other retailers.