Heartland Data Breach: How to Tell Your Customers

Example of Communication from Bank of Fayetteville, AR. If your institution has been affected in the Heartland breach and you are not on this list, please send an email to editor@bankinfosecurity.com. Include your name, email, and a phone number where you may be contacted for verification.

This is a copy of a letter sent by the Bank of Fayetteville, Fayetteville, AR to a debit card customer on January 22. The bank sent the letter to inform the customer that the debit card may have been among those that were compromised as a result of confirmed unauthorized access to Heartland Payment Systems. The customer's name and address were removed before being posted to our website. The letter tells the customer that the cardholder name and expiration date were exposed in the breach. Heartland Payment Systems data breach coverage

The bank says the identified exposure dates are from debit card transactions done between May 15, 2008 and November 13, 2008. The Bank of Fayetteville says it has debit card fraud monitoring in place and has chosen not to automatically replace the debit card at the time the letter was sent.

Heartland, the sixth-largest payments processor in the U.S., announced on Jan. 20 that its processing systems were breached in 2008, exposing an undetermined number of consumers to potential fraud.

View the letter here (PDF)


About the Author

Linda McGlasson

Linda McGlasson

Managing Editor

Linda McGlasson is a seasoned writer and editor with 20 years of experience in writing for corporations, business publications and newspapers. She has worked in the Financial Services industry for more than 12 years. Most recently Linda headed information security awareness and training and the Computer Incident Response Team for Securities Industry Automation Corporation (SIAC), a subsidiary of the NYSE Group (NYX). As part of her role she developed infosec policy, developed new awareness testing and led the company's incident response team. In the last two years she's been involved with the Financial Services Information Sharing Analysis Center (FS-ISAC), editing its quarterly member newsletter and identifying speakers for member meetings.




Around the Network