Neiman Marcus Data Breach
The luxury retailer Neiman Marcus Group has disclosed a huge data breach that may impact around 4.6 million individuals. The data breach occurred over a year ago, in May 2020. The company says an unauthorized party obtained the personal information of many Neiman Marcus customers from online accounts.
Call The Lyon Firm for a free, confidential Neiman Marcus data breach case review. Data Breach Lawsuits seek compensation for victims and hold companies liable for data security negligence.
Neiman Marcus is working with law enforcement, and has hired a cybersecurity company to assist with the investigation. The data breach, which Neiman Marcus said happened way back in May 2020, leaked information of about 3.1 million payment cards and gift cards.
The company says there is no evidence that online customer accounts for Bergdorf Goodman and Horchow units have been affected. The personal data that may be compromised includes the following:
- Credit card numbers and expiration dates
- Gift card numbers
- User names and passwords
- Security questions
Neiman Marcus says it became aware of the security incident in September 2021. It is not clear if Neiman stored user account passwords in plaintext or if they were properly hashed and salted, which experts have recommended for a long time.
After becoming aware of the data breach, Neiman Marcus prompted customers to reset their passwords. A statement from the company stated: “Our investigation is ongoing, and we are working quickly to determine the nature and scope of the matter.”