Learn More - Click Here!

Page 2 of 2 1 2
New Reply Thread Options
#1346157 - 02/19/10 05:07 PM Re: Heartland Breach - 600 million affected? DeeQ
WonderWoman Offline
Diamond Poster
WonderWoman
Joined: Mar 2007
Posts: 2,108
gone fishin'
Originally Posted By: DeeQuiteRelieved
I wouldn't file a SAR, the authorities know about, the regulators know about it, they caught the perpetrators (if I remember correctly), it would be an unnecessary filing IMHO.


Be careful ... this is how Riggs bank got nailed. (or was it the other one?) Anywho - if it hit the treshold of over $25K - it would be considered Credit/Debit Card Fraud & Identity Theft. You are obligated to file. Because the regulators know, is all the more reason to file.

This would not be (IMHO) Computer Intrusion as your computers were not intruded upon.
_________________________
My opinions are my own, and not that of my employer.

Return to Top Reply Quote Quick Reply Quick Quote
#1346201 - 02/19/10 05:47 PM Re: Heartland Breach - 600 million affected? DeeQ
Kaos Offline
100 Club
Kaos
Joined: Dec 2002
Posts: 130
We had an examiner ask why we hadn't filed it under a computer intrusion. My interpretation of a computer intrusion has always been our system. If you are caught up in someone elses problem, such as the Heartland case should you then be filing a SAR?

Return to Top Reply Quote Quick Reply Quick Quote
#1350525 - 03/01/10 06:08 PM Re: Heartland Breach - 600 million affected? Kaos
WonderWoman Offline
Diamond Poster
WonderWoman
Joined: Mar 2007
Posts: 2,108
gone fishin'
It is NOT computer intrusion.

Characterization of Suspicious Activity - Reportable Condition
Possible Federal Criminal Statute(s)
Explanation/Description

Computer Intrusion
18 U.S.C. Section 1030 Computer Fraud
A person who gains access to a computer system of a financial institution to:

Remove, steal, procure or otherwise affect funds of the institution or the institution's customers
Remove, steal, procure or otherwise affect critical information of the institution including customer account information; or,
Damage, disable or otherwise affect critical systems of the institution.
Note: Does not mean attempted intrusions of websites or other non-critical information systems of the institution that provide no access to institution or customer financial or other critical information

See The SAR Activity Review for additional information on Computer Intrusion at the following hyperlink: http://www.fincen.gov/sarreviewissue3.pdf
_________________________
My opinions are my own, and not that of my employer.

Return to Top Reply Quote Quick Reply Quick Quote
Page 2 of 2 1 2
Quick Reply:
HTML is disabled
UBBCode is enabled




Moderator:  MagicCity, P*Q, Truffle Royale