So it seems that the American Bankers Association had a breach, although I didn’t see it any mainstream media reports. Marc Hochstein noted the breach in a column he wrote today:
American Bankers Association separately said that email addresses and passwords used to make purchases or register for events through its online shopping cart had been compromised. At least 6,400 users’ records had been posted online, the trade group said, though there was no evidence that credit card or other personal financial information had been accessed.
Read more on AmericanBanker.com.
A statement on the ABA’s site provides some additional details, including the fact that ABA has reset all users’ passwords and encourages users who may have re-used passwords across sites to change their passwords on other sites as well.