Member access

4-Traders Homepage  >  News

News

Latest NewsCompaniesMarketsEconomy & ForexCommoditiesHot NewsMost Read NewsRecomm.Business LeadersVideosCalendar 

With data vulnerable, retailers look for tougher security

01/13/2014 | 01:35am US/Eastern

A top retail trade group executive on Sunday called for tougher security standards that could mean more spending for the industry, its banks and business partners after a series of data breaches at major merchants.

Stores and card processing companies have reported a steady stream of security breaches for years without a major backlash from consumers, such as those disclosed by TJX Cos in 2007 and by Heartland Payment Systems Inc in 2009.

But the latest thefts - including attacks on Target Corp and Neiman Marcus - have involved a broad set of merchants and could mark a watershed moment for security standards as calls grow for changes in the protection of consumer information.

One sign of the change is a new enthusiasm for payment cards that store customer information on computer chips and require users to type in personal identification numbers.

Mallory Duncan, general counsel of the National Retail Federation that represents Target, Wal-Mart and other big stores, said in an interview on Sunday that the trade group encouraged its members to upgrade to the higher-security cards even though they cost more than old systems that store data on magnetic stripes.

The breaches are "unfortunate but we're not entirely surprised," Duncan said at his organization's annual convention now being held in New York.

"The technology that exists in cards out there is 20th-century technology and we've got 21st-century hackers," he said.

Duncan said the trade group had only made its backing for the higher-security cards public since the Target breach. Banks have quietly begun to offer the cards but mainly for customers to use while traveling. Big U.S. card networks led by Visa Inc will not require the higher security until next year at the earliest.

It is not clear the new "Chip-and-PIN" cards would have prevented the breaches at Target and elsewhere. At the very least they make stolen data harder to re-use, a reason the technology has caught on widely in Europe and Asia.

They have met with much less enthusiasm in the United States, in part because losses to fraud - just 5 cents for every $100 spent via plastic - have been manageable for merchants and their banks. But rising fraud rates, and the risk of identity theft, could change the calculation.

The new scrutiny began last month after Target of Minneapolis disclosed it suffered a massive data breach during the holiday shopping season. Target said on Friday the breach was worse than it initially thought and that hackers stole the personal information of at least 70 million customers, in addition to some 40 million payment card numbers.

Investigators believe that hackers used malware that captured data on customers from the magnetic stripes on their payment cards. Since Target's disclosure the more upscale store chain Neiman Marcus has said it also suffered an attack, and sources have told Reuters that at least three other well-known U.S. retailers have been breached but not come forward.

In his first interview since it disclosed the breach, Target Chairman and Chief Executive Gregg Steinhafel told CNBC the company moved quickly after it confirmed it had a security issue on December 15, though it did not disclose the problem until December 19. The time allowed Target to eliminate the malware that had compromised its systems and to prepare its stores and call centers for its announcement, he said.

Steinhafel did not offer many more details and noted an ongoing criminal investigation.

"Clearly we are accountable and we are responsible - but we are going to come out at the end of this a better company and we are going to make significant changes," he said, according to the article.

Duncan, the trade group official, said no other members had told the NRF they had been breached, and a series of other executives said in interviews since Saturday that they also were not aware of breaches at their companies. The executives included representatives of Sears Holdings Corp, JCPenney Co, Macy's Inc and Gap Inc.

Still, the breach was the talk of the massive conference with 29,000 industry attendees at New York's Jacob K. Javits Convention Center. Several speakers cited it during their remarks at the conference and some tried to distance their companies from vulnerabilities.

Dan Morrell, assistant treasurer of drugstore chain Walgreen Co, said the company was "spending a lot of time and the right investment dollars" to protect its data and its customers.

Stan Lippelman, vice president of marketing at Bass Pro Shops, a privately-held outdoor goods seller, said: "We feel very comfortable with where we are at. But ... the fact that it happens to Target means it can happen to anybody, right?"

(Additional reporting by Jim Finkle and Dhanya Skariachan in New York; Editing by Stephen Coates)

By Ross Kerber and Phil Wahba

Latest news
Date Title
2m ago RICOH : GNU Bash “Shellshock” Security Vulnerability
2m ago IGG : Oct 19, 2014Clash of Gangs Official Worldwide Launch!
2m ago WILLIAM ACKMAN : Ackman, Valeant lawyers say Allergan CEO oversaw campaign to discredit Valeant
11m ago CHUN WO DEVELOPMENT : China New Way Inv to make offer for Chun Wo Dev
11m ago GCL POLY ENERGY : issues Rmb400m second tranche notes
11m ago ZHENGZHOU COAL MINING MACHINERY : ZMJ 9-month net profit down 62.6% to Rmb261m
11m ago WAI YUEN TONG MEDICINE : tips interim profit down over 50%
11m ago ZMFY AUTOMOBILE GLASS SERVICES : Glass to buy Heilongjiang property at Rmb48m
11m ago HSI opens up 3 pts to 23,073; H-shr down 19 pts at 10,276
11m ago SHANGHAI ELECTRIC : SH Electric 3Q net profit down 21.8% to Rmb493m
Latest news
Advertisement
Hot News 
BANCO ESPIRITO SANTO : Novo Banco's Angolan Bank to Lose Most of Loan From Collapsed Banco Espirito Santo
DOMINION MIDSTREAM PARTNERS : Entry into a Material Definitive Agreement, Change in Directors or Principal Officers, Amendments to Articles of Inc. or Bylaws; Change in Fiscal Year, Financial Statements and Exhibits (form 8-K)
NCR : Announces Preliminary Third Quarter 2014 Results and Lowers Full-Year 2014 Guidance
NUTRECO : SHV and Nutreco announce a recommended cash offer of EUR 40 per share for all shares of Nutreco
SINOCOKING COAL AND COKE CHEM IND : Aboveground Syngas Facility Commences Operations
Most Read News
4h ago Chipotle stock dips as sales growth forecasts come down
1h ago Total CEO de Margerie killed in Moscow business jet accident
2h ago New Microsoft CEO pay tops $80 million with big stock awards
5h ago GULFMARK OFFSHORE : Announces Third Quarter 2014 Operating Results
4h ago Lockheed says has plan to catch up on F-35 deliveries by year-end
Most recommended articles
1m ago WILLIAM ACKMAN : Ackman, Valeant lawyers say Allergan CEO oversaw campaign to discredit Valeant
11m ago Aussie Dollar Edges Higher on China GDP, Yen May Rise on US Data
15m agoDJChina Growth Slows to 7.3% -- Update
17m ago EUR/USD Downside Momentum Fades As Intraday Dojis Signal Indecision
18m agoDJCEO of French Oil Giant Total Dies in Moscow Plane Crash -- Update
Dynamic quotes  
ON
| OFF