Credit unions responding to NAFCU's August Flash survey reported that merchants were the leading source of the credit and debit card fraud attempts they were seeing.
According to the survey, 36% of card fraud attempts had their roots in a data breach at a retail merchant, followed by 34.7% caused by hackers, 31% caused by card processors and 21.4% caused by card owners.
The report also offered some statistics regarding the losses credit unions suffered after two of the biggest card breaches, the TJX breach in 2007 and the Heartland Payment Systems breach in 2009.
TJX is the parent company of a number of popular retail brands, including TJ Maxx. Heartland is one of the largest card transaction processors in the country.
According to the survey, the average NAFCU member credit union had 6,104 card accounts impacted by the TJX breach and suffered more than $34,000 in damage. The Heartland breach affected 12,825 card accounts at the average credit union and caused an average of $76,160 in damage.