Brian Krebs reports:
Last week, Allentown, Pa. based point-of-sale (POS) maker Harbortouch disclosed that a breach involving “a small number” of its restaurant and bar customers were impacted by malicious software that allowed thieves to siphon customer card data from affected merchants. KrebsOnSecurity has recently heard from a major U.S. card issuer that says the company is radically downplaying the scope of the breach, and that the compromise appears to have impacted more than 4,200 Harbortouch customers nationwide.
Read more on KrebsOnSecurity.com.
There’s a difference between “a small number” and “a small percentage.” If you try to make a breach sound like “a small number” when it’s not, there’s generally someone around like Brian Krebs or myself who will call you out for the misrepresentation and attempt to downplay your breach.
Transparency, people. Transparency.