A direct correlation between the chip migration and rampant merchant data breaches is hard to prove. But experts say retailers' prioritization of EMV compliance contributed to other payment card security gaps, leading to the current high level of merchant data breaches.
It's a race to the finish line that also affects U.S. companies with European customers. In these final moments, every company must at least show good faith in attempting to follow the law and having procedures and technology in place to do so.
Data breaches have become routine, but the public reaction to these events is changing. Consumers are increasingly wary of sharing their information — just ask Mark Zuckerberg — and this trend raises the stakes for all financial institutions and merchants.
Companies that handle sensitive customer data have even more to worry about when making an acquisition. Not only do they have to be sure the acquired company has good security, but they can't let their guard down even after the acquisition closes.
Before reports of the data breach at Saks Fifth Avenue, Saks OFF 5th, and Lord & Taylor fade from the news cycle, there's one detail that should alarm merchants, card issuers and consumers — and sets a tone for future data breaches.
Like a crime wave, data leaks and vulnerable static identifiers show no sign of abating, as MyFitnessPal became the latest in a string of sites to have users' data exposed trough usernames and hashed passwords.
While there is a collective sense that data breaches are simply a side effect of our digital existence, there are real costs for the companies impacted. The ones that are hit the hardest are the ones that are least able to weather the fines, remediation costs and lost reputation.
By failing to protect their customers’ data, financial institutions and others in the payments ecosystem are risking trust, the most important currency they have, writes David Barnhardt, executive vice president of product at GIACT.