PCI is just so damn interesting - it’s like a soap opera…  Seriously - if you don’t have to deal with it everyday, I’m sure (as a retailer) that you count yourself lucky, but honestly it’s a hoot.
The game at hand is a combination of punishment and liability avoidance - the case of Hannaford is a good example.  Just when you think it’s all over and Hannaford gets to pick up the pieces and move on, everything takes a new twist.  Now the Maine Supreme Court is getting involved and …

Postal inspectors uncover MassMutual customer data during ID theft investigation | Office of Inadequate Security

Visa and MasterCard Issue New Breach Warning | Threat Level from Wired.com.
I wonder who it’s going to be….

Continues to be interesting…
StorefrontBacktalk » Blog Archive » Heartland Sniffer Hid In Unallocated Portion Of Disk.

Yeah - this is just a post with other links in it again…….
Seurosis
Payment Systems Blog
Terminal23
Washington Post

Here’s another article on the Heartland breach - this one from the NYT.  It’s interesting as Heartland’s founder gave a presentation at the VeriFone payments conference in the fall pushing for some of the end-to-end encryption technology that companies (like VeriFone) are starting to implement.
I wonder if that solution would have successfully addressed this attack.
It is interesting how, at the end of this article, they start to call into question the effectiveness of the whole PCI effort.  Now, if you have read anything that I’ve put up on this blog, …

Since Heartland is a company that has taken a very strong view of security, this is very interesting…
Heartland Payment says system was breached - International Herald Tribune.

Thanks to the guys at PaymentsNews for the heads-up.  Here’s the press release - link
More information is also available here

Another reported retail security breach …
InternetNews Realtime IT News - Mainframe Breach at LensCrafters Parent Hits 59K.

Here’s the link to the short article on Chain Store Age…
article