Following disclosure late Friday afternoon of an incident involving unauthorized access to its processing system, Global Payments Inc., a provider of payment processing services, late Sunday night said that it believes the breach was confined to North America and less than 1.5 million card numbers were exported and in the hands of attackers.
According to a statement sent to SecurityWeek via email Sunday night, the company acknowledged that Track 2 card data may have been stolen, but said cardholder names, addresses and social security numbers were not obtained by the criminals.
The company said it was still working wirh third parties, regulators and law enforcement, and has as engaged multiple information security and forensics firms to investigate and address the issue.
Following the initial report of the breach, speculation on the number of affected card numbers ranged from 50,000 up to 10 million.
The company said it will hold a conference call Monday, April 2, 2012 at 8:00 AM EDT to discuss the issue futher. Callers may access the conference call via the investor relations page of the Company’s Web site.