ARLINGTON, Va. (2/11/09)--A bank security website is tracking credit unions and banks that have publicly reported they've been affected by the Heartland Payment Systems data breach. As of Monday, of the 135 institutions listed on the site, 40 are credit unions. The site, bankinfosecurity.com, also listed, where available, the total number of cards compromised at the institution. Because the list depends on public announcements by the institutions, the list is considered a tip of the iceberg in terms of actual cards compromised. It is not known what resources the website reviews. The site recently added institutions headquartered in Guam, Canada, and Bermuda that reported their cards were impacted. The 40 credit unions are spread throughout the U.S. in 24 states. In Iowa, five credit unions reported their cards were comprised, the most of any state. Washington follows with four credit unions reporting they were impacted. Maine and Oregon each had three credit unions reporting. Heartland, the sixth-largest payments processor, announced Jan. 20 that its systems were breached in 2008. It processes on average about 100 million transactions a month for more than 250,000 retailers and merchants.