RBS WorldPay regains security approval after data breach

RBS WorldPay, the US-based payment processing division of the Royal Bank of Scotland Group, says...

RBS WorldPay, the US-based payment processing division of the Royal Bank of Scotland Group, says it has returned to Visa's and MasterCard's lists of validated service providers.

The announcement comes after RBS WorldPay was certified as compliant with Payment Card Industry Data Security Standard (PCI DSS) version 1.2, according to US reports.

Visa removed both the Atlanta-based payment processor and Heartland Payment Systems from its list of PCI-DSS-compliant service providers after data breaches at both companies were revealed.

Heartland announced early this month that it was back on Visa's PCI compliance list, and said MasterCard had not taken any action against it over the breach.

In December 2008, RBS WorldPay disclosed that personal information of about 1.5 million pre-paid cardholders and other individuals was compromised when its computer system was hacked.

The stolen data was used in a highly coordinated ATM scam in 49 cities around the world involving cloned payroll debit cards and reloadable gift cards.

The breach at RBS WorldPay was followed by Heartland's announcement in January that intruders installed malware in mid-2008 to steal data on the company's network.



Enjoy the benefits of CW+ membership, learn more and join.

Read more on IT risk management

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.