DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Update: Neiman-Marcus reports breach involved two related malware insertions

Posted on January 28, 2014 by Dissent

In a letter dated January 25 to the New Hampshire Attorney General’s Office, retailer Neiman-Marcus disclosed some additional details concerning the breach and their attempts to address consumer concerns.

As previously reported, in mid-December, Neiman-Marcus learned from its merchant processor of unauthorized payment card activity following purchases at Neiman-Marcus stores. On January 1, Neiman-Marcus learned, preliminarily, that “scraping” malware had been inserted in their system.  They later learned, as they have also previously disclosed, that the malware had been inserted in their system as early as July 2013.

What investigators just discovered more recently, however,  is that separate but related malware that allowed the scraping malware to function had been inserted earlier in 2013. Neiman-Marcus did not specify exactly when that malware was inserted.  Investigators also determined that the scraping malware was not operating at all Neiman-Marcus stores and even for those where it was operating, it did not operate every day between July 16 and October 30.

Based on current information, Neiman-Marcus believes that name and Track One information were involved, but not other types of information. They do not use PIN pads in their stores, either.

For the 2400 cards that were linked to fraudulent purchases, Neiman-Marcus says it has postal addresses for 71% of them, but because they do not know whether those same cards were involved in other retailers’ recent breaches, they cannot be sure whether their breach was the source of the card information used for fraudulent purchases.  For the broader population of 1.1 million card numbers, Neiman-Marcus does not have addressed for 31%, which is why it has resorted to public notices and e-mails for those for whom they have e-mail addresses.

Although some media sources have questioned whether the breach occurred earlier than July 16 because Neiman-Marcus is offering free credit monitoring to all customers who shopped between January 1, 2013 and January 22, 2014, Tracy M. Preston, Senior Vice-President and General Counsel, explains that they are using a larger window “in an abundance of caution in light of the uncertainty at this state of the investigation.”

“Fundamentally, our goal is to communicate to all our customers that taking care of them is and always has been our top concern,” writes Ms. Preston.

Related posts:

  • Neiman Marcus discloses May, 2020 incident that impacted 4.6 million customers
  • Update: Neiman Marcus says security breach may affect up to 1.1 million cards
  • Breach litigation standing — the bell tolls for Clapper
  • Appeal of dismissal of Neiman Marcus lawsuit heard by Seventh Circuit
Category: Breach IncidentsMalwareOf Note

Post navigation

← Bike Waiter warns customers of security breach
Documents found in dumpster; personal information exposed →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • National Health Care Fraud Takedown Results in 324 Defendants Charged in Connection with Over $14.6 Billion in Alleged Fraud
  • Swiss Health Foundation Radix Hit by Cyberattack Affecting Federal Data
  • Russian hackers get 7 and 5 years in prison for large-scale cyber attacks with ransomware, over 60 million euros in bitcoins seized
  • Bolton Walk-In Clinic patient data leak locked down (finally!)
  • 50 Customers of French Bank Hit by Insider SIM Swap Scam
  • Ontario health agency atHome ordered to inform 200,000 patients of March data breach
  • Fact-Checking Claims By Cybernews: The 16 Billion Record Data Breach That Wasn’t
  • Horizon Healthcare RCM discloses ransomware attack in December
  • Disgruntled IT Worker Jailed for Cyber Attack, Huddersfield
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Trump administration is building a national citizenship data system
  • Supreme Court Decision on Age Verification Tramples Free Speech and Undermines Privacy
  • New Jersey Issues Draft Privacy Regulations: The New
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.