Got a letter from my bank today stating that my current Visa Debit Card would not be valid after Jan 20, 2010 because it was compromised in a security breach and would be replaced. This has happened to me twice before involving local vendors who screwed up. At that time I was informed of the vendor causing the security breach.
This time there was no vendor mentioned, so I chatted by Internet with my bank:
BankRep: Hello
Me: I just got a letter from <Bank> indicating that I would be getting a new check card because of a security breach. There was no information about WHERE the security breach occurred. Can I have that information so that I can avoid purchasing from that seller?
BankRep: The breach was with Visa.
BankRep: Unfortunately further details are not available.
Me: Do you mean that the breach was with Visa itself an not with an individual vendor?
BankRep: There are no further details available regarding a specific vendor.
Me: As an effected consumer, how can I investigate this matter further to narrow down where the security breach occurred, either at Visa or at a specific vendor?
BankRep: There was not a specific merchant involved.
Me: Your answer was not germane to my question and directly contradicts your prior answer to me. May I speak with a supervisor, either on line or by phone.
BankRep: I am the Internet Center Supervisor
BankRep: I apologize if you feel the answer is incomplete.
Me: Have I exhausted my options with you to gain information about this security breach?
BankRep: Unfortunately <Bank> was not provided additional information from Visa when they reported the compromise to <Bank>.
Me: Thank you for the information you have provided. I will use a different approach gaining information about this security breach from Visa.
BankRep: You are welcome.
Not satisfied, I walked to a local branch and discussed the problem there. The bank personnel there said that Visa released scant information about this breach, but that the breach occurred at a processor, and not at any specific vendor. That doesn't sound any more comforting.
Check your mail tonight for a letter from your bank about your Visa card or debit card, or perhaps a card from any card vendor. Perhaps its more widespread that VISA if it's caused by a card processor.
I'd like more information on what happened. How widespread is this breach in terms of cardholders, geography, or credit card vendors? I've seen nothing in the news about this. I'd like to stir up some information because little is forthcoming from VISA.