Differences in approach to this problem taken by MasterCard, CardSystems, security experts, and the government
MasterCard put CardSystems on notice after the breach and its fellow credit card companies, Visa and American Express, both terminated their relationship with CardSystems. Both MasterCard and Visa also have the ability to impose six-figure fines against processors who do not follow their rules which include storing customer data when they are not supposed to. Besides no longer working with CardSystems, MasterCard has not done much. The high cost of new security measures is a major hurdle that most credit card companies do not want to deal with and MasterCard is one of those companies.
CardSystems lost of their major customers and had to stop its business operations and all of its assets were then acquired by CyberSource Corporation.
Security experts gave many ideas for solutions to improve security, but these solutions are ones that the credit card companies are not warming to because it costs a lost of money to protect customer data. If the purpose of expensive security measures are just to better protect customer data, companies will not want to make changes unless there some other motivation for them to do such as financial rewards.
In terms of the government, senators from states like New York and Florida are proposing bills to solve the problem of stolen customer data. They want bills that fines companies that do not comply with security standards and create security policies if they do not have one. These fines would be imposed by people outside the credit card companies and working with the government.
CardSystems lost of their major customers and had to stop its business operations and all of its assets were then acquired by CyberSource Corporation.
Security experts gave many ideas for solutions to improve security, but these solutions are ones that the credit card companies are not warming to because it costs a lost of money to protect customer data. If the purpose of expensive security measures are just to better protect customer data, companies will not want to make changes unless there some other motivation for them to do such as financial rewards.
In terms of the government, senators from states like New York and Florida are proposing bills to solve the problem of stolen customer data. They want bills that fines companies that do not comply with security standards and create security policies if they do not have one. These fines would be imposed by people outside the credit card companies and working with the government.