Men charged with trying to steal money from card system at US merchants

Men charged with trying to steal money from card system at US merchants

About 150 Subway restaurants and 50 other unnamed retailers recently had credit card data of 80,000 customers compromised by Romanian hackers, according to authorities. These types of attacks can result in a costly blow to customer loyalty, which is why businesses should do their best to have a quality IT security system in place that is PCI compliant.

Four men face 23 charges of conspiracy to commit computer fraud, device fraud and wire fraud after allegedly conspiring to hack into 200 point-of-sale computer systems to steal customer data from 2008 to mid-2011. Keyloggers were installed to record the information and about 80,000 customers had their information compromised.

"The U.S. accounts for 47 percent of debit and credit card fraud despite only accounting for 27 percent of transactions, according to a recent report," says Lisa Vaas of security firm Sophos. "I don't know if Subway had unpatched vulnerabilities on its POS systems or what. But whatever merchants have to do, yikes, please do it."

The men each face up to five years in prison. Retailers, restaurants and eCommerce businesses need to make sure they have the highest level of PCI compliance and data security to stop events like this where customers' money is put on the line.