“American luxury retailer Neiman Marcus Group has just disclosed a major data breach impacting approximately 4.6 million customers,” reports Ars Technica.
“The breach occurred sometime in May 2020 after ‘an unauthorized party’ obtained the personal information of some Neiman Marcus customers from their online accounts.”
Neiman Marcus is working with law enforcement agencies and has selected cybersecurity company Mandiant to assist with the investigation. Thursday, Neiman Marcus disclosed that its 2020 data breach impacted about 4.6 million customers with Neiman Marcus online accounts. The personal information of these customers was potentially compromised during the incident. The bits of information include:
– Names, addresses, contact information
– Usernames and passwords of Neiman Marcus online accounts
– Payment card numbers and expiration dates (although no CVV numbers)
– Neiman Marcus virtual gift card numbers (without PINs)
– Security questions of Neiman Marcus online accounts
“Although the data breach occurred over a year ago, Neiman Marcus states it became aware of the incident this September.”
Read more of this story at Slashdot.