Three indicted for hack attacks on Heartland, Hannaford
Largest data breach conspiracy hit 5 companies, led to theft of 130M credit card numbers
Computerworld - A Miami man and two Russians today were indicted by a grand jury in New Jersey on charges of conspiring to commit some of the largest data breaches in U.S. history.
Albert Gonzalez, 28, and the two still-unnamed Russian citizens are charged with running an international scheme to steal more than 130 million credit and debit card numbers along with personally identifying information from five companies, including Heartland Payment Systems Inc., 7-Eleven Inc. and Hannaford Brothers Co. The two other companies were not named in the indictment because their breaches have not yet been made public.
"This represents another major step forward in our efforts to prosecute individuals responsible for these major data breaches," said Assistant U.S. Attorney Erez Liebermann, who is prosecuting the case with Assistant U.S. Attorney Seth Kosto. "It also further illustrates the ability of the U.S. to work with foreign law enforcement in these international cases and track down people even when they use sophisticated means."
The data breach at Heartland, which is based in Princeton, N.J., is considered to be one of the largest breaches involving credit cards ever reported in the U.S. Heartland said earlier this year that it has already spent or set aside more than $12.6 million to cover costs related to the intrusion there.
The data breach at Hannaford resulted in the reported theft of up to 4.2 million credit and debit card numbers from the company's systems.
Gonzalez, who is being held in a detention center in Brooklyn, N.Y., was indicted in the Eastern District of New York on May 12, 2008, and the District of Massachusetts on August 5, 2008, for his alleged involvement in separate conspiracies relating to data breaches at TJX Companies, Dave & Busters, BJ's Wholesale Club, OfficeMax, Boston Market, Barnes & Noble, Sports Authority, Forever 21 and DSW.
Before that, Gonzalez was arrested in New Jersey in 2003 on charges of ATM and debit card fraud.
Liebermann said he could not comment on the status of the others charged in the conspiracy.
The three are charged with conspiracy to gain unauthorized access to computers, conspiracy to commit fraud in connection with computers, and conspiracy to damage computers. They also are charged with conspiracy to commit wire fraud.
Each of the three faces up to 35 years in federal prison and a fine of $1.25 million.
Massive data thefts
- Update: Mastermind of TJX, Heartland breaches to plead guilty
- Alleged data-heist kingpin is a computer addict, lawyer says
- Gonzalez's lawyer to contend he was not the kingpin of Heartland, Hannaford breaches
- Hacking kingpin negotiating plea deal with feds
- Three indicted for hack attacks on Heartland, Hannaford
- TJX data breach: At 45.6M card numbers, it's the biggest ever
Read more about Government IT in Computerworld's Government IT Topic Center.


Last month I blogged about the partnerships you should build inside your organization. In keeping with that tone it's time we discussed expanding that partnership mentality to include some of the best technical resources you can ever get hold of, those are the ones that work in your neighboring cities, municipalities, counties, regions, townships etc. Come on folks, these people are already doing exactly the same things as you!
- Excel 2010 Cheat Sheet
- Register for this Computerworld Insider Cheat Sheet and gain access to hundreds of premium content articles, guides, product reviews and more.
- Plugging Information Leaks
- Unlike traditional data leak prevention solutions, which work at the network or desktop level, Attachmate Luminet software monitors end-user activity at the application...
- Shine a Light on Insider Abuse
- This solution brief describes the four technical challenges you face and tells you how Luminet can help you overcome them.
- Threats from Within Your Government Agency
- This solution brief tells how Attachmate Luminet fraud management software can help government agencies and departments get ahead of the fraud curve-by providing...
- Practice Management: Double Billing Rate and Improve Patient Services
- Would you like to double your billing rate and achieve faster payment for services?
Download this customer success story to see how One Health... - Mission Critical Data Explosion and Customer Case Study
- Would you like to double your tier 1 storage capacity while simultaneously reducing your storage footprint?
Download this customer success story to see how...
All Government IT White Papers
- Distributed Database Security with Real-time Monitoring
- View this demo and learn how IBM InfoSphere Guardium database activity monitoring can help protect your sensitive data in distributed DBMS environments with...
- InfoSphere Warehouse Packs Demo
- These flash modules make warehousing more tangible and relevant to business users through detailed explanations of the InfoSphere Warehouse Packs.
- Delivery Management -- Extending Lifecycle Management
- Date: Wednesday, June 20, 2012, 1:00 PM EDT
Siloed organizations continue doing the wrong things and doing things wrong, leading to increased costs,... - Leverage automation today to reduce IT complexity
- Date: Tuesday, June 5, 2012, 2:00 PM EDT
Whether your B2B complexity is caused by multiple technologies due to M&A, business or application specific... - Redefine Expectations in the Data Center
- Need to do more with less? Watch this video to learn how HP ProLiant Gen8 servers can help your business deploy servers three... All Government IT Webcasts
