Make us your home page

Breach exposes debit card accounts at Suncoast Federal Credit Union to fraud

About 56,000 members of Suncoast Schools Federal Credit Union have been notified that their debit card accounts were exposed to fraud.

It is the latest casualty of last year's breach of Heartland Payment Systems, one of the country's largest credit card processors, where information from more than 100 million credit and debit card transactions was exposed.

Not until the end of May did Suncoast discover that some of its customers who use Visa Check Cards could be in danger. The Tampa credit union is issuing new cards to all members whose accounts were compromised.

"It was not a Suncoast exclusive event nor was it through any fault of our own," said Melva McKay-Bass, senior vice president of member service operations for Suncoast. "It was not anything that we had done wrong."

Suncoast, which has more than 450,000 members, has determined that less than 1,000 members were actually affected by fraud as of Wednesday, McKay-Bass said.

Only encrypted card data was compromised, not personal information such as names, addresses and Social Security numbers. The credit union began notifying affected members by letter in the first week of June, McKay-Bass said.

Suncoast released a statement explaining the breach Friday in response to what it said was an inaccurate Fox News report that, McKay-Bass said, panicked some of its members.

"If you hear on the news that there has been a breach or harsh words such as breach or internal security situation, as a customer of that financial institution, I would call to see if my account is safe, so that is exactly what has happened. … And that is exactly what we wanted to avoid," she said.

Visa has a zero liability fraud policy that allows people who report fraud to recoup their money. Affected members won't experience any interruptions of service, but there will be some time overlap between when members receive new cards and when the old ones are canceled.

"At no time do we want them to be without their plastic so we want to make sure that the new card is in hand before the old card is canceled," McKay-Bass said.

This is the first time Suncoast has reissued this many cards, and it is unrealistic to say that this will be its last, she said.

It is not unusual for the effects of security breaches to span several years, said Avivah Litan, security analyst for Gartner Research.

In 2007, TJX Cos., operator of T.J. Maxx and Marshalls, announced it suffered a security intrusion that spanned several years and exposed as many as 100 million accounts.

There has been a recent trend of hackers infiltrating payment processors, Litan said.

When a card is used, the charge goes to a payment processer and then to the bank for approval. Hackers use the data to make counterfeit cards and make purchases, she said.

"The banks get very upset about this because they have to absorb the costs, so sometimes it's easier to just shut down the account and reissue the cards," Litan said.

It is common for credit unions to reissue cards because they often lack the infrastructure to deal with heavy phone traffic from concerned members and to monitor at-risk accounts, she said.

Consumers are growing numb from data breaching reports, said Sara Peters, senior editor of Computer Security Institute in San Francisco.

"People are starting to get used to this kind of thing," she said. "The amount of nervousness or outrage when people receive these notification letters is starting to dwindle."

Suncoast is encouraging its members to continue to monitor their accounts and contact the credit union if there is any strange activity.


Ways to prevent account fraud

• Check accounts online for unusual charges.

• If you see any mail from your financial institution, open it immediately.

• Don't share your PIN number with anyone.

• Shred personal financial information like bank receipts.

• Don't keep debit card and pin number together.

• Call the post office to change your address or if you are going out of town.

For more information about preventing fraud, visit

Breach exposes debit card accounts at Suncoast Federal Credit Union to fraud 06/17/09 [Last modified: Thursday, June 18, 2009 5:20pm]
Photo reprints | Article reprints

© 2017 Tampa Bay Times


Join the discussion: Click to view comments, add yours

  1. Judge throws out $458,000 condo sale, says Clearwater attorney tricked bidders

    Real Estate

    CLEARWATER — Pinellas County Circuit Judge Jack St. Arnold on Monday threw out the $458,100 sale of a gulf-front condo because of what he called an "unscrupulous" and "conniving" scheme to trick bidders at a foreclosure auction.

    John Houde, left, whose Orlando copany was the high  bidder June 8 at the foreclosure auction of a Redington Beach condo, looks in the direction of Clearwater lawyer and real estate investor Roy C. Skelton, foreground,  during a hearing Monday before Pinellas County Circuit Judge Jack St. Arnold.  [DOUGLAS R. CLIFFORD   |   Times ]
  2. Pasco EDC names business incubator head in Dade City, will open second site


    Pasco County economic development officials are busy reigniting their business start-up resources following the departure earlier this year of Krista Covey, who ran the Pasco Economic Development Council's SMARTStart business incubator in Dade City.

    Andrew Romaner was promoted this summer to serve as program director of the Dade City SMARTStart Entrepreneur Center, a start-up incubator service of the Pasco Economic Development Council. He succeeds Krista Covey, who relocated to Texas for another startup position. [Courtesy of Pasco EDC]
  3. Proposed Tampa tax increase prompts second thoughts about Riverfront Park spending

    Local Government

    TAMPA — Julian B. Lane Riverfront Park has a $35.5 million price tag with something for everyone, including a rowers' boathouse, a sheltered cove for beginning paddlers, an event lawn, a community center with sweeping views of downtown and all kinds of athletic courts — even pickleball! — when it opens …

    Expect the $35.5 million redevelopment of Julian B. Lane Riverfront Park to be a big part of the discussion when the Tampa City Council discusses Mayor Bob Buckhorn's proposed budget and property tax increase this Thursday. LUIS SANTANA   |   Times
  4. Record $417 million awarded in lawsuit linking baby powder to cancer


    LOS ANGELES — A Los Angeles jury on Monday ordered Johnson & Johnson to pay a record $417 million to a hospitalized woman who claimed in a lawsuit that the talc in the company's iconic baby powder causes ovarian cancer when applied regularly for feminine hygiene.

    A bottle of Johnson's baby powder is displayed. On Monday, Aug. 21, 2017, a Los Angeles County Superior Court spokeswoman confirmed that a jury has ordered Johnson & Johnson to pay $417 million in a case to a woman who claimed in a lawsuit that the talc in the company's iconic baby powder causes ovarian cancer when applied regularly for feminine hygiene. [Associated Press]
  5. Superior Uniform acquires Los Angeles-based PublicIdentity


    SEMINOLE — A subsidiary of Seminole-based Superior Uniform Group has acquired Los Angeles-based branded merchandise company PublicIdentity Inc.

    Superior Uniform Group CEO Michael Benstock
[Courtesy of Superior Uniform Group]