Talking about the company of Heartland payment systems. On exactly march 2008 through SQL injection the 134 million credit cards wre exposed to install the spyware on this company.
The second scenerio is the company called TJX Companies Inc.On december 2006 same issue like 94 million cards were exposed.There is a conflict at that time like group of hackers did this type of task like and they took advantage of a weak data encryption system and they stole credit card data.This work has done while transferring wireless data between stores.
The third one is Epsilon.On march 2011 the names of emails and names of the customers were exposed for millions of customers and these were stored in the 108 retail stores plus.This stolen of these emails of the customers will be used to target phishing attacks.
in my opinion I will give one strategy to mitigate the risks.
Assses the risks
To measure and to identify vulnerabilities and risks just perform the periodic risk assessments.Within the organization this risk assessment measures the wellness of datasecurity breach and will identify the areas od concern in the real time and can used to decument to help in future and thus leads to success of the program.