A Luxury retailer, Neiman Marcus, has disclosed a data breach affecting approximately 64,000 customers.
The incident, which came to light after an investigation, exposed sensitive customer information, including names, contact details, dates of birth, and gift card numbers from Neiman Marcus and its subsidiary, Bergdorf Goodman.
Cybercriminal Attempts to Sell Data
Shortly after the breach was made public, a cybercriminal using the alias “Sp1d3r” posted on the notorious BreachForums, offering to sell the stolen data.
According to Sp1d3r’s claims, the compromised information spans an astonishing 6 billion rows of customer shopping records, employee data, and store information, potentially including the last four digits of Social Security Numbers.
Scan Your Business Email Inbox to Find Advanced Email Threats - Try AI-Powered Free Threat Scan
Snowflake Incident: A Broader Attack
According to Malwarebytes reports, Neiman Marcus appears to be one of the numerous victims of the recent Snowflake incident, where cybercriminals targeted the third-party platform used by several prominent brands.
The hacker known as Sp1d3r has been linked to the sale of data belonging to other Snowflake customers, suggesting a broader attack on the platform.
After this incident, affected customers must proactively safeguard their personal information.
Experts recommend changing passwords, enabling two-factor authentication (preferably using FIDO2-compliant devices), and being cautious of potential phishing attempts by fraudsters posing as Neiman Marcus representatives.
Customers are also advised to consider not storing their card details on websites and to set up identity monitoring services to detect illegal online trading of their personal information.
By taking these precautions and staying informed about the latest developments in the Neiman Marcus data breach, customers can minimize the risk of falling victim to identity theft and financial fraud.
Free Webinar! 3 Security Trends to Maximize MSP Growth -> Register For Free