Data Commisioner Confirms Credit Card Data Was Not Encrypted

The Irish Times is reporting that the Data Protection Commisioner, Billy Hawkes, has confirmed that the compromised credit card data at LoyaltyBuild had been stored in an unencrypted form – together with the 3-digit CVV number from the backs of the cards.

When first reporting the breach last week, the company had claimed that all financial data was encrypted, and that CVV numbers were not retained.

The Times puts the total number of people affected at about 1.5m: 400,000 whose credit cards have been “seriously compromised”; 150,000 whose cards have been “potentially compromised”; and 1.1 million whose names address and phone numbers were taken.

About the Author: Conn Ó Muíneacháin

Conn Ó Muíneacháin works at Blacknight, Ireland's largest provider of domains and hosting. He's an award-winning radio producer, podcaster and blogger. He's an engineer as well (not the award-winning kind). Conn produces video for Blacknight and edits Technology.ie. Labhair Gaeilge leis!

13 Comments

ian_kenefick November 12, 2013 at 8:38 pm - Reply

RT @blacknight: Data Commisioner Confirms Credit Card Data Was Not Encrypted: http://t.co/4nSa7q7iTb
mneylon November 12, 2013 at 8:41 pm - Reply

RT @blacknight: Data Commisioner Confirms Credit Card Data Was Not Encrypted: http://t.co/4nSa7q7iTb
BYRNEC November 12, 2013 at 8:45 pm - Reply

@blacknight Data stored where? Loyaltybuild were acquired by US firm Affinion in 2008.
aidan_walsh November 12, 2013 at 9:00 pm - Reply

DPC confirms LoyaltyBuild credit card details were not encrypted http://t.co/9ZQi2Hq3cn (via technology.ie)
aurainternet November 12, 2013 at 9:09 pm - Reply

RT @blacknight: Data Commisioner Confirms Credit Card Data Was Not Encrypted: http://t.co/4nSa7q7iTb
davebolger November 12, 2013 at 9:59 pm - Reply

“@blacknight: Data Commisioner Confirms Credit Card Data Was Not Encrypted: http://t.co/7dHBIxYNPz” <- Wow
faduda November 12, 2013 at 10:20 pm - Reply

RT @davebolger: “@blacknight: Data Commisioner Confirms Credit Card Data Was Not Encrypted: http://t.co/7dHBIxYNPz” <- Wow
Wexford_tweeter November 12, 2013 at 10:21 pm - Reply

RT @davebolger: “@blacknight: Data Commisioner Confirms Credit Card Data Was Not Encrypted: http://t.co/7dHBIxYNPz” <- Wow
srlbrooks November 13, 2013 at 7:31 am - Reply

«@mneylon «@blacknight Data Commisioner Confirms Credit Card Data Was Not Encrypted: http://t.co/4rzkDfIFKd»» whoopsie
blacknight November 14, 2013 at 1:10 pm - Reply

Data Commisioner Confirms Credit Card Data Was Not Encrypted http://t.co/XuprbWxu2X
vinnycoyne November 14, 2013 at 1:13 pm - Reply

“@blacknight: Data Commisioner Confirms Credit Card Data Was Not Encrypted http://t.co/PloBreJmum” Unbelievable.
DomainNewsAfric November 14, 2013 at 1:13 pm - Reply

RT @blacknight: Data Commisioner Confirms Credit Card Data Was Not Encrypted http://t.co/XuprbWxu2X
modernprogrammr November 14, 2013 at 1:39 pm - Reply

@vinnycoyne @blacknight Don’t we have an entire department set up to make sure this doesn’t happen? PCI Compliance no?

Data Commisioner Confirms Credit Card Data Was Not Encrypted

Related articles

Share with a friend!

About the Author: Conn Ó Muíneacháin

13 Comments

Leave A Comment Cancel reply

Related Posts

European Union investigating Musk’s X (Twitter) over possible breaches of social media law

Meta’s Threads app expands into Europe

Meta and TikTok explain response to Dublin riots and misinformation

Meta begins end-to-end encryption rollout

Spotify to axe 1,500 jobs to cut costs

Fake Facebook accounts shut down by Meta were ‘primed to polarise voters’