Click here to close now.



Welcome!

News Feed Item

NAFCU: Credit Unions Pay High Price for Data Breaches

The National Association of Federal Credit Unions’ (NAFCU) February Economic & CU Monitor survey found that credit unions, and by extension their 96 million members, are paying a high price for retailers’ data breaches. NAFCU estimates that the recent Target data breach could end up costing the credit union community nearly $30 million. Among those surveyed, the average cost for the Target data breach was $45,000.

“The survey findings are staggering. Credit unions are being hit by a double whammy in terms of numbers of possible data breaches and costs while they continue to pick up the tab for retailers who are not subject to the same high level of data security standards,” said NAFCU Chief Economist and Director of Research David Carrier. “It is ironic that despite the ample rules in place to ensure data protection standards at financial institutions like credit unions, merchants and retailers are not held accountable for data breaches. Cybercriminals will continue to capitalize on this double standard and wreak havoc with consumers and our economy.”

NAFCU’s Economic & CU Monitor on data security reported:

  • Respondents were alerted to a possible breach 263 times on average in 2013, and the average amount spent on data security measures was $158,600.
  • Respondents reported an average of $152,000 for data breaches in 2013. The median cost was $59,000.
  • The bulk of these costs were related to fraud losses and investigations (46.7 percent), followed by reissue costs (34.4 percent) and monitoring costs (19 percent). Reissuing cards takes 7 days, on average, and costs $5 per card.
  • Almost half (42 percent) of respondents confirmed that their reputation had been harmed due to a merchant data breach.
  • Survey respondents indicated that an average of 10,300 cards were affected by merchant data breaches in 2013.

NAFCU was the first financial services trade association to weigh in on this issue on Capitol Hill and urged Congress to take action and set national data security standards for retailers and merchants. Financial institutions, including credit unions, have been subject to standards on data security since 1999 under the Gramm-Leach-Bliley Act. However, retailers and other entities that handle sensitive personal financial data are not. So, when a data breach occurs, financial institutions bear a significant burden as the issuers of payment cards used by millions of consumers.

NAFCU is urging Congress to pass S. 1927, the “Data Security Act of 2014,” by Sens. Tom Carper, D-Del., and Roy Blunt, R-Mo. This bill leaves intact the federal standards already imposed on financial institutions and seeks to extend the protection further, by setting national standards for all merchants and retailers to follow in protecting data, providing timely breach notification and paying their share of the clean-up when breaches occur.

NAFCU’s Economic and CU Monitor is a member-only monthly e-newsletter of the latest macroeconomic and financial trends affecting today's credit unions, including trend data among NAFCU member federal credit unions.

The National Association of Federal Credit Unions is the only national organization that focuses exclusively on federal issues affecting credit unions, representing its members before the federal government and the public.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
Advances in technology and ubiquitous connectivity have made the utilization of a dispersed workforce more common. Whether that remote team is located across the street or country, management styles/ approaches will have to be adjusted to accommodate this new dynamic. In his session at 17th Cloud Expo, Sagi Brody, Chief Technology Officer at Webair Internet Development Inc., focused on the challenges of managing remote teams, providing real-world examples that demonstrate what works and what do...
One of the bewildering things about DevOps is integrating the massive toolchain including the dozens of new tools that seem to crop up every year. Part of DevOps is Continuous Delivery and having a complex toolchain can add additional integration and setup to your developer environment. In his session at @DevOpsSummit at 18th Cloud Expo, Miko Matsumura, Chief Marketing Officer of Gradle Inc., will discuss which tools to use in a developer stack, how to provision the toolchain to minimize onboa...
SYS-CON Events announced today that Pythian, a global IT services company specializing in helping companies adopt disruptive technologies to optimize revenue-generating systems, has been named “Bronze Sponsor” of SYS-CON's 18th Cloud Expo, which will take place on June 7-9, 2015 at the Javits Center in New York, New York. Founded in 1997, Pythian is a global IT services company that helps companies compete by adopting disruptive technologies such as cloud, Big Data, advanced analytics, and DevO...
With microservices, SOA and distributed architectures becoming more popular, it is becoming increasingly harder to keep track of where time is spent in a distributed application when trying to diagnose performance problems. Distributed tracing systems attempt to address this problem by following application requests across service boundaries, persisting metadata along the way that provide context for fine-grained performance monitoring.
With an estimated 50 billion devices connected to the Internet by 2020, several industries will begin to expand their capabilities for retaining end point data at the edge to better utilize the range of data types and sheer volume of M2M data generated by the Internet of Things. In his session at @ThingsExpo, Don DeLoach, CEO and President of Infobright, will discuss the infrastructures businesses will need to implement to handle this explosion of data by providing specific use cases for filte...
SYS-CON Events announced today that Men & Mice, the leading global provider of DNS, DHCP and IP address management overlay solutions, will exhibit at SYS-CON's 18th International Cloud Expo®, which will take place on June 7-9, 2016, at the Javits Center in New York City, NY. The Men & Mice Suite overlay solution is already known for its powerful application in heterogeneous operating environments, enabling enterprises to scale without fuss. Building on a solid range of diverse platform support,...
SYS-CON Events announced today that Fusion, a leading provider of cloud services, will exhibit at SYS-CON's 18th International Cloud Expo®, which will take place on June 7-9, 2016, at the Javits Center in New York City, NY. Fusion, a leading provider of integrated cloud solutions to small, medium and large businesses, is the industry's single source for the cloud. Fusion's advanced, proprietary cloud service platform enables the integration of leading edge solutions in the cloud, including clou...
More and more companies are looking to microservices as an architectural pattern for breaking apart applications into more manageable pieces so that agile teams can deliver new features quicker and more effectively. What this pattern has done more than anything to date is spark organizational transformations, setting the foundation for future application development. In practice, however, there are a number of considerations to make that go beyond simply “build, ship, and run,” which changes ho...
SYS-CON Events announced today that Commvault, a global leader in enterprise data protection and information management, has been named “Bronze Sponsor” of SYS-CON's 18th International Cloud Expo, which will take place on June 7–9, 2016, at the Javits Center in New York City, NY, and the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Commvault is a leading provider of data protection and information management...
SYS-CON Events announced today that AppNeta, the leader in performance insight for business-critical web applications, will exhibit and present at SYS-CON's @DevOpsSummit at Cloud Expo New York, which will take place on June 7-9, 2016, at the Javits Center in New York City, NY. AppNeta is the only application performance monitoring (APM) company to provide solutions for all applications – applications you develop internally, business-critical SaaS applications you use and the networks that deli...
The maker of automated server migration software reports sales bookings increased 460 percent year-over-year and last week IDC forecast spending on public cloud services will grow to more than $141 billion in 2019. Seems (at last) we are at the tipping point where enterprises are adopting cloud in a big way opening opportunities for those who can help with the transition.
SYS-CON Events announced today that Alert Logic, Inc., the leading provider of Security-as-a-Service solutions for the cloud, will exhibit at SYS-CON's 18th International Cloud Expo®, which will take place on June 7-9, 2016, at the Javits Center in New York City, NY. Alert Logic, Inc., provides Security-as-a-Service for on-premises, cloud, and hybrid infrastructures, delivering deep security insight and continuous protection for customers at a lower cost than traditional security solutions. Ful...
@DevOpsSummit taking place June 7-9, 2016 at Javits Center, New York City, and Nov 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with the 18th International @CloudExpo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. @DevOpsSummit at Cloud Expo New York Call for Papers is now open.
The cloud promises new levels of agility and cost-savings for Big Data, data warehousing and analytics. But it’s challenging to understand all the options – from IaaS and PaaS to newer services like HaaS (Hadoop as a Service) and BDaaS (Big Data as a Service). In her session at @BigDataExpo at @ThingsExpo, Hannah Smalltree, a director at Cazena, will provide an educational overview of emerging “as-a-service” options for Big Data in the cloud. This is critical background for IT and data profes...
SYS-CON Events announced today that VAI, a leading ERP software provider, will exhibit at SYS-CON's 18th International Cloud Expo®, which will take place on June 7-9, 2016, at the Javits Center in New York City, NY. VAI (Vormittag Associates, Inc.) is a leading independent mid-market ERP software developer renowned for its flexible solutions and ability to automate critical business functions for the distribution, manufacturing, specialty retail and service sectors. An IBM Premier Business Part...