Extra Bytes, Information Security

Luxury Retailer Neiman Marcus Confirms Data Breach Impacting Thousands

Caught in a data blizzard.

Michelle Harris

Contributing Writer

Save

Neiman Marcus recently revealed that a data breach affecting over 64,000 individuals was linked to its Snowflake customer account. The breach compromised sensitive information, including names, contact details, dates of birth, and gift card numbers for Neiman Marcus and Bergdorf Goodman. This incident is part of a broader wave of cyberattacks targeting customers of Snowflake, a major data cloud storage provider.

The breach was discovered and contained swiftly by Neiman Marcus, which involved disabling access to the compromised platform and launching an investigation with cybersecurity experts. The attack is yet another example of ongoing vulnerabilities in cloud storage security and the persistent threats faced by businesses relying on third-party services.

Why it matters: Data breaches not only jeopardize the personal information of thousands but also undermine customer trust and corporate reputation. This incident sheds light on the broader issue of cloud storage security and the importance of strong cybersecurity measures.

Response and Investigation: Upon discovering the breach, Neiman Marcus contained the incident, initiated an investigation with cybersecurity firms, and informed law enforcement. Identity theft protection services were not provided to affected individuals.

Hacker Claims and Actions: The hacker, known as Sp1d3r, claimed responsibility for the breach and attempted to sell the stolen data for $150,000 on a cybercriminal forum. The post was later removed.

Broader Implications: The breach is part of a larger campaign targeting Snowflake customers, affecting major companies like Santander, Ticketmaster, and public sector organizations such as the Los Angeles Unified School District.

Snowflake’s Stance: Snowflake maintains that the breaches were not due to any vulnerability or misconfiguration on their platform, as confirmed by investigations from cybersecurity firms Mandiant and CrowdStrike.

Go Deeper ->Neiman Marcus says 64,000 affected by breach of Snowflake customer account – Recorded Future

Neiman Marcus Data Breach Disclosed as Hacker Offers to Sell Stolen Information – SecurityWeek

Neiman Marcus confirms data breach after Snowflake account hack – bleepingcomputer.com

Save

June 27, 2024

☀️ Subscribe to the Early Morning Byte! Begin your day informed, engaged, and ready to lead with the latest in technology news and thought leadership.

☀️ Your latest edition of the Early Morning Byte is here! Kickstart your day informed, engaged, and ready to lead with the latest in technology news and thought leadership.