Capital One Credit Card Breach: Tip of the Iceberg?

Capital One Credit Card Breach: Tip of the Iceberg?

Capital One Credit Card Breach: Tip of the Iceberg?

Where there is smoke, there is fire.

Today’s WSJ poses a scary question for the credit card industry. Is Capital One the only victimized company? The headline screams, “FBI Examining Possible Data Breaches Related to Capital One.”

The issue is simple: Once someone has the keys to the vault, why stop at Capital One?

And now, the European Central Bank is involved. This could get ugly. Really ugly.

If UniCredit is involved, expect the General Data Protection Act to kick in. British Airways is contending with a $230 million fine.  Google was charged $75 million and Uber a million. Bring UniCredit, an Italian global bank in 17 countries and $20 billion in revenue, and expect a new wave of industry controls (and fines).

If the theory of “once you are in, you are in” holds as the FBI believes, then plenty of financial service companies can be at risk. On the Amazon Web Service website, the Capital One case study mentions many top financial industry users.

Cloud services are advances in the way we do business, but they do remove data processing into non-banking realms. Is the FBI’s concern valid? Yes, I think so.

The next worry for paranoid bankers: If the cloud has risk, what about all those cool APIs?

Overview by Brian Riley, Director, Credit Advisory Service at Mercator Advisory Group

Exit mobile version