网络安全引发美国银行业与零售业争执
Banks are gearing up for a big fight with retailers over who covers the cost of cyber attacks after paying most of the bill for breaches that they blamed on retailers’ own security deficiencies.
银行正准备与零售商展开一场重大较量,焦点是谁应承受网络攻击所造成的成本。此前银行承担了侵入事件的大部分成本,尽管它们将这些侵入归咎于零售商自身的安全缺陷。In a rare show of unity, industry bodies that represent banks are banding together to urge lawmakers to introduce legislation that would force retailers to pay for the clean-up themselves during the new session of Congress next year.
代表银行的若干家行业组织罕见地团结起来,联手敦促美国新一届国会在明年开会期间出台新的法律,迫使零售商自行承担清理工作的成本。
The tussle between the two sectors comes as cyber attacks become an increasingly common problem for companies and highlights the difficulties in deciding who is responsible for costs. Attacks on retailers Home Depot and Target, for example, affected almost 100m credit cards in the past year.
这两个行业展开争斗之际,网络攻击正成为企业面对的一个日趋普遍的问题,突显出在确定谁该买单问题上的困难。例如,黑客对零售商家得宝(Home Depot)和塔吉特百货(Target)发起的攻击,在过去一年里影响了近1亿张信用卡。
“This is an equity argument,” said Cam Fine, head of the Independent Community Bankers of America, which has about 5,000 members. “If it was Home Depot’s data security system that was breached, shouldn’t they have to reimburse banks for all the costs, since it wasn’t the banks’ fault? ”
“这是一个有关公平的主张,”拥有大约5000个会员的美国独立社区银行家协会(Independent Community Bankers of America)的负责人卡姆•法恩(Cam Fine)表示,“如果是家得宝的数据安全系统遭到侵入,那么既然不是银行的过错,他们难道不应该补偿银行付出的所有成本吗?”The data breach at the retailer, which the company reported in September, cost community banks and credit unions at least $160m to reissue cards and pay for other services related to the attack. Home Depot estimated that the breach cost the company at least $62m.
这家零售商9月份报告的数据失窃事件,已导致社区银行和信用社支出至少1.6亿美元重发新卡,以及为与应对这次攻击有关的其他服务买单。家得宝预计,此次侵入事件给该公司造成至少6200万美元的成本。“The weak link in the system today is on the merchant end,” the National Association of Federal Credit Unions and the Credit Union National Association wrote last week to retailer groups. “As long as the security standards on the merchant side of the system are weaker than those on the financial institution side of the system, the vulnerability for consumers and financial institutions will be at your feet.”
“当今系统中的薄弱环节是在商家这头,”联邦信贷协会全国联盟(NAFCU)和美国信用社协会(CUNA)上周致函零售商团体称,“只要系统中商家这头的安全标准弱于金融机构这头,消费者和金融机构的脆弱性就是由贵方造成的。”Banks and retailers have sparred for years over transaction costs, but the latest spate of cyber attacks has heightened animosity between the two groups. Retailers’ representatives rejected the banking industry’s claims. “The suggestion that retailers pay nothing is demonstrably false,” said Brian Dodge, executive vice-president at lobby group, the Retail Industry Leaders Association.
银行和零售商围绕交易成本已争吵多年,但围绕网络攻击的最新口水战加剧了这两个群体之间的敌意。零售商的代表不接受银行业的主张。“有关零售商没有付出任何代价的说法显然是不实的,”游说团体——美国零售业领导者协会(RILA)执行副总裁布赖恩•道奇(Brian Dodge)表示。The costs of unauthorised transactions on hacked credit cards were shared evenly between retailers and banks over time, he added. “This is an effort by the banks to obscure reality and benefit from an issue that’s a challenge to many businesses, not just retailers,” he said.
他补充说,被黑的信用卡所带来的未授权交易的成本,长期而言是在零售商和银行之间均匀分担的。“这是银行的一个企图,目的是掩盖现实,从一个对众多企业——而不仅仅是零售商——都构成挑战的问题中捞取好处,”他说。‘There is more of an urgency to do something because these breaches keep.'
“现在有更大的紧迫性采取对策,因为这类侵入事件越来越多了。”
