Breaches exposed 1 in 7 US debit cards in 2013
The Target breach could speed up the switch to chip-based EMV cards
IDG News Service - Data breaches at retailers and financial services companies exposed 14% of all U.S. debit cards in 2013, according to a nationwide survey by a major ATM network operator.
The figure is three times that of 2012 and comes as consumers are using debit cards to make more purchases than ever before.
The survey, conducted by Discover Financial Services' Pulse ATM network, found that the majority of affected cards were exposed in a single event: the Target data breach that compromised some 70 million customer records in late 2013.
Around 10% of all U.S. debit cards were affected in the Target incident, and the majority of financial institutions affected were pushed to reissue cards.
The Target breach will likely encourage a faster switch to so-called "EMV" cards, which contain a microchip rather than a magnetic strip, and require a PIN for authorization rather than a signature.
While EMV is already standard in Europe, U.S. banks and credit unions dragged their feet on the technology, but the Target breach has pushed the industry to a tipping point, said Pulse. Two-thirds of financial institutions plan to begin issuing EMV cards in 2015.
They are also being pushed by an Oct. 1, 2015, change in the liability rules concerning card purchases. After that date, card issuers and retailers that have invested in EMV technology will be protected from liability for losses.
The change gives banks and retailers the incentive to use EMV because the cost of the new technology is offset against the amount of fraud it will deter.
In the case of PIN-based transactions and traditional debit cards with magnetic strips, the difference is an order of magnitude. The survey found banks carried a fraud loss of 2.2 cents per signature transaction in 2013, compared with just 0.3 cents on PIN-based transactions.
The survey found consumers are using their debit cards more -- the average card was used 20 times a month in 2013, up by one transaction from 2012. The average debit card was used for $8,875 of purchases in 2013, up $122 from the previous year.
The Pulse survey covered large banks, credit unions and community banks that together account for 45% of all debit card transactions in the U.S.
Martyn Williams covers mobile telecoms, Silicon Valley and general technology breaking news for The IDG News Service. Follow Martyn on Twitter at @martyn_williams. Martyn's e-mail address is firstname.lastname@example.org
- Using Cyber Insurance and Cybercrime Data to Limit Your Business Risk This paper examines the challenges of understanding cyber risks, the importance of having the right cyber risk intelligence, and how to use this...
- 5 Tips to Secure Small Business Backdoors in the Enterprise Supply Chain This paper examines the insecurity of the small businesses in the supply chain and offers tips to close those backdoors into the enterprise.
- Comprehensive Advanced Threat Defense The hot topic in the information security industry these days is "Advanced Threat Defense" (ATD). This paper describes a comprehensive, network-based approach to...
- Advanced Threat Defense: A Comprehensive Approach In this interview, Peter George, president, General Dynamics Fidelis Cybersecurity Solutions, explains why we need more than anti-malware, and what constitutes a comprehensive...
- Live Webcast Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- NSS Labs & Cisco Present: Evaluating Leading Breach Detection Systems Today's constantly evolving advanced malware and APTs can evade point-in-time defenses to penetrate networks. Security professionals must evolve their strategy in lockstep to... All Cybercrime and Hacking White Papers | Webcasts