Neiman Marcus Hacked, Some Cards Compromised

Neiman Marcus, a luxury merchant with more than 40 stores, confirmed some of its customers’ payment card information was stolen over the holidays. Unauthorized charges occurred after the theft.

This news comes only a few weeks after Target Corp. disclosed its own information breach, which resulted in 40 million credit and debit card accounts being compromised.

In an Associated Press article published on, Ginger Reeder, spokeswoman for Neiman Marcus Group Ltd., is quoted.

Reeder said in an email that Neiman Marcus had been informed by its credit card processor that potentially unauthorized payment activities were occurring in mid-December. On Jan. 1, a forensics team confirmed the company was a victim of a cybersecurity attack and that some customers’ credit and debit cards may have been compromised.

“We have begun to contain the intrusion and have taken significant steps to further enhance information security,” said Reeder.

She explained that affected customers are being notified about the fraudulent use of their cards and Neiman Marcus is working with the United States Secret Service to resolve the breach.

The Target incident may become the largest retailer data breach on record when its investigation is complete. Not only were the 40 million credit and debit card accounts affected, but other data not related to payments, was stolen from 70 million customers. Though Target says there is some overlap between the two figures, this is still a significantly large number of affected people.

Robert Siciliano, a McAfee security expert told the AP that Neiman Marcus may not yet know the extent of the information breach. He believes this attack and the Target theft were likely committed by the same group, based on his experience and the fact that both attacks occurred around the same time.

“It’s a knee-jerk reaction that the security industry has right now,” said Siciliano.


For more information on the two incidents, see the original AP article here: