WebProNews

Tag: Neiman Marcus

  • Neiman Marcus Data Breach Exposed 1.1M Cards

    Neiman Marcus Data Breach Exposed 1.1M Cards

    Earlier this month, high-end retailer Neiman Marcus confirmed that they had been the target of a widespread data breach that saw hackers gain access to customer credit cards via a sophisticated malware attack. At that time, the company launched an investigation into the breach.

    Now, Neiman Marcus is sharing some of the preliminary findings and have admitted that the breach may have affected 1.1 million customers.

    “Neiman Marcus was informed by our merchant processor in mid-December of potentially unauthorized payment card activity that occurred following customer purchases at our Neiman Marcus Group stores. We informed federal law enforcement agencies and began working actively with the U.S. Secret Service, the payment brands, our merchant processor, a leading investigations, intelligence and risk management firm, and a leading payment brand-approved forensics firm to investigate the situation. On January 1st, the forensics firm discovered evidence that the company was the victim of a criminal cyber-security intrusion and that some customers’ cards were possibly compromised as a result. At this time, the malicious software we have found has been disabled,” said Neiman last week.

    In a new statement posted on their site, Neiman says they “deeply regret and are very sorry that some of our customers’ payment cards were used fraudulently after making purchases at our stores.”

    Out of the 1.1 million payment cards exposed, only a handful have been confirmed to have been used to make fraudulent purchases. Visa, MasterCard, and Discover have notified the company of 2,400 such instances.

    The malware responsible for snatching the information was reportedly active for many months, spanning from mid-July to the end of October, 2013.

    As you probably know, Neiman Marcus isn’t the only high-profile retailer to suffer a massive data breach. Target is dealing with its own attack, which exposed approximately 70 million accounts (they originally said 40 million, but later upped the count).

    Some blame the rash of high-profile payment system breaches to the United States’ outdated card technology. While the U.S. still uses magnetic strips on their credit and debit cards, many other countries (and the majority of Europe) have moved on to EMV technology, which uses a small computer chip to handle transactions.

    Still, analysts say that a switch to such technology would be costly – plus they’re unsure if EMV tech would have actually prevented the Target and Neiman hacks, or simply lessened their scope.

    The recent slew of data breaches has garnered the attention of Congress, who is set to hold hearings during the first week of February to “examine data breaches and their effect on consumers.” Target is their guest of honor.

    Image via Wikimedia Commons

  • Neiman Marcus Confirms Data Breach

    Neiman Marcus Confirms Data Breach

    Upscale retailer Neiman Marcus is the latest chain to announce a data breach that may put its customers at risk for credit card fraud.

    According to Krebs on Security – the same site that broke news of the Target data breach back in December – Neiman Marcus confirmed that it is working with the US Secret Service to investigate a server break-in that exposed debit and credit card information of an unknown number of its customers.

    Early last week, cyber security reporter Brian Krebs began hearing rumors from his sources in the financial industry of fraudulent debit and credit card charges that were being traced back to cards that had been recently used at Neiman Marcus stores.

    On January 10, Krebs reported that he’d contacted the Dallas, TX-based upscale retailer about the rumors and received confirmation that they were indeed investigating a breach:

    “Neiman Marcus was informed by our credit card processor in mid-December of potentially unauthorized payment card activity that occurred following customer purchases at our Neiman Marcus Group stores.

    We informed federal law enforcement agencies and are working actively with the U.S. Secret Service, the payment brands, our credit card processor, a leading investigations, intelligence and risk management firm, and a leading forensics firm to investigate the situation. On January 1st, the forensics firm discovered evidence that the company was the victim of a criminal cyber-security intrusion and that some customers’ cards were possibly compromised as a result. We have begun to contain the intrusion and have taken significant steps to further enhance information security.

    The security of our customers’ information is always a priority and we sincerely regret any inconvenience. We are taking steps, where possible, to notify customers whose cards we know were used fraudulently after making a purchase at our store.”

    Retail giant Target made a similar announcement on December 19. From there, the news just kept getting worse. On December 27, the company announced that hackers had also stolen PIN information. On Friday, Target said that the number of customers affected by the data breach was closer to 70 million than the originally estimated 40 million. Furthermore, in addition to debit and credit card numbers, the hackers may have stolen names, addresses, phone numbers, and email addresses.

    Robert Siciliano, a cyber security expert with McAfee, says it’s possible that the data breaches at Target and Neiman Marcus were perpetrated by the same group of hackers.

    Adding to the general concern about credit card safety, Reuters announced today that smaller-scale data breaches have taken place at at least three other well-known US retailers.

    Image via Wikimedia Commons

  • Owners of Neiman Marcus Sell Chain for $6 Billion

    News broke on Monday that private equity firms TPG Capital and Warburg Pincus will sell their luxury chain Neiman Marcus to Ares Management and Canadian Pension Plan Investment Board for $6 billion.

    TPG Capital and Warburg Pincus purchased the chain in 2005 for $5.1 billion, and have held on to it for much longer than the 3-5 years that is typical in the investment business.

    In June, the chain announced that it had filed for a $100 million IPO. The decision to enter into a private sale, thus essentially ending plans for the IPO, may have been made amidst fears that current market conditions wouldn’t favor an IPO, according to Michael Appel, who runs the retail consultancy Appel Associates.

    Not surprisingly the chain, which specializes in upscale goods from designers such as Michael Kors, Tory Burch, and Rebecca Minkoff, took a hit in the recent recession. According to Mark Cohen, a business professor at the Columbia Business School and former CEO of Sears Canada, the recession is likely why TPG Capital and Warburg Pincus held onto the chain for so long: “I think they were itching to get out,” Cohen says. “They would have exited sooner if not for the onset of the recession.”

    Luxury sales are expected to grow this year, although at a slower rate than in the past. That means it’s a relatively good time for the TPG Capital and Warburg Pincus team to unload its investment.

    The company’s Twitter stream is unperturbed by the announcement, and instead dominated by news of what is perhaps the biggest fashion event of the year in the US: New York Fashion Week.

    The Dallas, TX-based retailer currently operates 79 stores. That number includes 41 Neiman Marcus stores, 2 Bergdorf Goodman stores in Manhattan, and 36 Last Call outlet centers. It’s been beefing up its online presence in recent years to cash in on the ever-growing numbers of online shoppers. The company’s online division includes the upscale Horchow housewares site.

  • Neiman Marcus Files for $100M IPO

    Neiman Marcus Files for $100M IPO

    Department store Neiman Marcus this week announced that it has filed for an initial public offering. According to a registration with the Securities and Exchange Commission, the offering will be in common stock sold by current shareholders. The number of shares offered, and the price range for the shares, has not yet been released. Financial services company Credit Suisse Securities is handling the offering.

    According to a Bloomberg report, Neiman Marcus is expecting to raise around $100 million during the offering, an amount that could change as specifics about the offering are finalized. The company’s owners are valuing it at around $8 billion. Neiman Marcus returned $4.5 billion in revenue over the past year.

    Neiman Marcus was founded in 1907 and is headquartered in Dallas, Texas. Though the company has had many owners over its 100-year history, it was most recently bought in a 2005 leveraged buyout by investment firms including Texas Pacific Group and Warburg Pincus. Both firms are expected to sell stock in the IPO to reduce their ownership stakes.

    (via Bloomberg)