Neiman Marcus Says Credit Card Data Stolen in BreachCNET reports that Neiman Marcus has confirmed its database of customer information was hacked over the holidays. The breach was first reported by KrebsonSecurity.
The breach at Neiman Marcus sounds similar to what happened at Target. Online customers do not appear to have been affected. The scope of the breach is unknown and the number of credit and debit cards impacted has not yet been revealed.
In a statement, Neiman Marcus said it was informed about a potentially unauthorized breach by its credit card processor in mid-December. The company informed federal law enforcement agencies. On January 1st, the forensics firm found evidence that the company was indeed the victim of a criminal hack and that some customers' cards were possibly compromised. The retailer says it is currently working with "the U.S. Secret Service, the payment brands, our credit card processor, a leading investigations, intelligence and risk management firm, and a leading forensics firm to investigate the situation."
Neiman Marcus says, "The security of our customers' information is always a priority and we sincerely regret any inconvenience. We are taking steps, where possible, to notify customers whose cards we know were used fraudulently after making a purchase at our store."
Krebs on Security notes that the time frame of the Neiman Marcus and Target breaches are similar, but a connection between the two has not been made at this time. Target recently expanded the scope of its breach and announced that 110 Million Americans' personal information was obtained in the massive data hack.
Posted on January 10, 2014