The Heartland breach, announced in January 2009, was the first card processor breach to attract international attention. Plaintiffs’ suits against Heartland claimed the data breach resulted from Heartland’s failure to follow the PCI Data Security Standard. Thousands of financial institutions reported losses associated with the breach, including M&T Bank, Citi and HSBC. A judge dismissed the majority of those claims, saying plaintiffs failed “to state a claim upon which relief can be granted” A violation of the Florida Deceptive and Unfair Trade Practices Act may be amended.”]
Source: https://www.databreachtoday.com/heartland-breach-claims-dismissed-a-4322