DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Judge Refuses to Dismiss Neiman Marcus Data Breach Class Action

Posted on January 30, 2016 by Dissent

Christina Davis reports:

Neiman Marcus Group LLC has lost a bid to toss a class action alleging that the retail clothing chain’s negligence caused a massive data security breach and then hid the problem right before the holiday shopping season in 2013.

The Neiman Marcus class action lawsuit was filed by Hilary Remijas on behalf of consumers affected by the alleged breach.

The Neiman Marcus data breach class action lawsuit had landed back in district court after a somewhat surprising – but welcome – Seventh Circuit ruling reinstated the lawsuit in July, 2015. The court subsequently denied Neiman Marcus’s request for an en banc review of the ruling.  Now back in district court, the retailer argued that the claims should still be dismissed because the injuries did not demonstrate negligence. As Davis reports:

The plaintiffs contended, in turn, that the Seventh Circuit had found that whether or not Neiman Marcus consumers had been reimbursed by their financial institutions for charges resulting from the data breach was factual and could not be dismissed. Additionally, the plaintiffs pointed out that at a minimum, the proposed class had claims based on the amount of time spent dealing with potentially fraudulent charges.

Judge Zagel agreed with the plaintiffs and refused to dismiss the Neiman Marcus class action lawsuit. Judge Zagel stated that dismissal of the lawsuit was “not appropriate at this time.”

So this hasn’t been a great month for Neiman Marcus, who just disclosed this week that they experienced another breach on December 26, 2015 that impacted over 700 California residents (and an unknown total number of consumers).

Neiman Marcus reported that the websites of their Neiman Marcus, Bergdorf Goodman, Horchow, Last Call, and CUSP stores were hit with automated attacks trying various login combinations. The firm suspects that the attackers may have been using login credentials acquired in other hacks of other entities. In some cases, the attackers were able to access customer accounts (but not full credit card numbers or PIN numbers) and make purchases. Neiman Marcus has credited/restored all accounts. Neiman Marcus reports that its defenses were able to successfully repel about 99% of the attacks.

No related posts.

Category: Business SectorHackU.S.

Post navigation

← LA: Medicaid fraud case had 13k victims (UPDATED)
Wayne Memorial Hospital fired nurse’s aide who accessed patient records without authorization →

1 thought on “Judge Refuses to Dismiss Neiman Marcus Data Breach Class Action”

  1. adam silber says:
    February 4, 2016 at 1:56 am

    karen katz shouldve already resigned..first CEO with 2 data breaches accomplished..Sad. clearly this retailer cant be trusted permanently. The company is so in debt it had to take an emergency loan as well

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Air Force Employee Pleads Guilty to Conspiracy to Disclose Unlawfully Classified National Defense Information
  • UK police arrest four in connection with M&S, Co-op and Harrods cyberattacks (1)
  • At U.S. request, France jails Russian basketball player Daniil Kasatkin on suspicion of ransomware conspiracy
  • Avantic Medical Lab hacked; patient data leaked by Everest Group
  • Integrated Oncology Network victim of phishing attack; multiple locations affected (2)
  • HHS’ Office for Civil Rights Settles HIPAA Privacy and Security Rule Investigation with Deer Oaks Behavioral Health for $225k and a Corrective Action Plan
  • HB1127 Explained: North Dakota’s New InfoSec Requirements for Financial Corporations
  • Credit reports among personal data of 190,000 breached, put for sale on Dark Web; IT vendor fined
  • Five youths arrested on suspicion of phishing
  • Russia Jailed Hacker Who Worked for Ukrainian Intelligence to Launch Cyberattacks on Critical Infrastructure

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • How to Build on Washington’s “My Health, My Data” Act
  • Department of Justice Subpoenas Doctors and Clinics Involved in Performing Transgender Medical Procedures on Children
  • Google Settles Privacy Class Action Over Period Tracking App
  • ICE Is Searching a Massive Insurance and Medical Bill Database to Find Deportation Targets
  • Franklin, Tennessee Resident Sentenced to 30 Months in Federal Prison on Multiple Cyber Stalking Charges
  • On July 7, Gemini AI will access your WhatsApp and more. Learn how to disable it on Android.
  • German court awards Facebook user €5,000 for data protection violations

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.