Tens of attorneys general announced this week a $1.5 million settlement with The Neiman Marcus Group LLC over a data breach suffered by the company in 2013 and disclosed earlier 2014.
43 states and the District of Columbia were involved in the settlement.
Early 2014, the high-end retailer confirmed a data breach, the incident happened a few weeks after the clamorous data breach at US giant retailer Target. At the time, Neiman Marcus had 79 stores and reported total sales of $1.1 billion in the Q4 2013.
The company notified the incident to its customers that hackers breached servers of the company and accessed the payment information of those who purchased at one of its 77 stores.
In just three months in 2013, hackers stole about 370,000 credit cards and at least 9,200 of them were involved in fraudulent activities.
“Under terms of the settlement announced Tuesday, Neiman Marcus agrees to maintain reasonable procedures to protect customers’ personal data and obtain an information security assessment and report from a third-party professional.” reported the Associated Press.
(Security Affairs – settlement, cybercrime)