Neiman Marcus: 1.1 million cards compromised

The retailer, however, said it has no knowledge of any connection between its data breach and the one disclosed by Target.
Written by Larry Dignan, Contributor

Upscale retailer Neiman Marcus confirmed that it was a victim of a data breach and that 1.1 million customer payment cards were scraped for data.

In a notice on its Web site, Neiman Marcus said that malware was installed on its systems and attempted to collect payment card data from July 16 to Oct. 30.

More: Target's data breach: No, really. It gets even worse. | There's no hope for our payment systems | Target data breach part of broader organized attack | Most CEOs clueless about cyberattacks – and their response to incidents proves it

The news comes as payment systems are being examined for security at major retailers. First, Target came out with disclosures that as many as 110 million accounts may have been breached. Then Neiman Marcus surfaced as a victim in subsequent reports. Other retailers are also likely to come forward.

However, Neiman Marcus said it has no knowledge of any connection to the Target security issues. Neiman Marcus said it was informed by its merchant processor in mid-December about a potential breach.

Add it up, 1,100,000 customer cards were visible to the malware. Visa, MasterCard and Discover have told the retailer that 2,400 unique payment cards have been used fraudulently so fear.

The good news for Neiman Marcus customers is that so far social security numbers and birth dates weren't compromised, store issued cards haven't been breached and online shoppers aren't impacted.


More: Cisco's annual security report offers grim outlook for 2014 | Likely candidate for Target breach malware found | Target CEO promises cybersecurity education of the masses | Cisco on major retail hacks: Point-of-sale hardware is the problem | More retailers hit by security breaches; malware found on Target's POS machines | Target's data breach: It gets worse

Editorial standards