"Major Data Breach Hits Neiman Marcus"

The owner of two chains of American luxury department stores has warned 4.6 million Neiman Marcus customers that their personal data may have been exposed in a security incident that happened 17 months ago.  Neiman Marcus Group, which owns the Neiman Marcus and Bergdorf Goodman department stores and the high-end home goods line Horchow, said the incident may have exposed information, including names, contact details, and payment card information.  While the investigation into the incident is ongoing, the Group said that the breach occurred in May 2020.   The ongoing investigation has revealed that an unauthorized attacker may have accessed usernames, passwords, and security questions and answers linked to Neiman Marcus online accounts.  Also, approximately 3.1 million payment cards and virtual gift cards were affected by the security incident. The company stated that only 15% of the impacted cards were valid or unexpired. The Group noted that the breach impacted no active Neiman Marcus-branded credit cards.  No evidence has been found so far to suggest that Bergdorf Goodman or Horchow online customer accounts were affected by the breach.  Since learning of the incident, the Group has required an online account password reset for affected customers who had not changed their password since May 2020.

Infosecurity reports: "Major Data Breach Hits Neiman Marcus"