Luxury department store chain Neiman Marcus has recently been in the headlines after confirming that approximately 65,000 customers were affected by a data breach that targeted its database on the cloud-based data warehousing platform Snowflake. The breach, which occurred between April and May, was only discovered by Neiman Marcus in May. The incident was made public through a notification filed with the Office of the Maine Attorney General.
According to a statement released by Neiman Marcus, the unauthorized third party managed to gain access to personal information stored in the database platform. The stolen data included a variety of personal details such as names, contact information, dates of birth, and Neiman Marcus or Bergdorf Goodman gift card numbers, without the corresponding PIN numbers. This breach exposed over 70 million transactions, 50 million customer emails, 12 million gift card numbers, employee information, and customer shopping data. The attacker, known as “Sp1d3r,” reportedly sold this information for $150,000.
This is not the first time that Neiman Marcus has fallen victim to a data breach. In May 2020, the personal information of around 4.6 million online customers was compromised in a similar cyber attack. Neiman Marcus came under scrutiny for the delayed response to this breach, as they only became aware of it over a year later.
The recent incident with Neiman Marcus is part of a larger trend of data breaches affecting multiple organizations, including well-known brands like Ticketmaster and Santander Bank. These breaches have been linked to a security flaw in the Snowflake platform, where customers failed to implement multifactor authentication (MFA) and proper access control. UNC5537, the group behind the breaches, used valid credentials acquired from other sources to gain unauthorized access to accounts.
Security experts emphasize the importance of implementing MFA and password management solutions to enhance cybersecurity measures. Dirk Schrader from Netwrix recommends organizations to adopt MFA, enforce complex password policies, and implement a just-in-time privilege approach to identity security. Gunnar Braun from Synopsys highlights the need for all companies, especially retailers, to prioritize data protection and secure their credentials to prevent future breaches.
Darren Williams, CEO of BlackFog, warned of the long-term impact of data breaches on customers, as stolen data is often used for years to come by cyber criminals. Despite the risks posed by these attacks, many organizations are still ill-prepared to handle such security incidents. Williams noted that Neiman Marcus’s decision not to pay the ransom demanded by the attackers led the criminals to sell the data online, putting individuals at risk.
In conclusion, the Neiman Marcus data breach serves as a stark reminder of the importance of robust cybersecurity measures in safeguarding sensitive customer data. As cyber threats continue to evolve, it is crucial for businesses to prioritize security practices like MFA and password protection to prevent unauthorized access to sensitive information. By investing in cybersecurity protocols and staying vigilant against potential threats, organizations can protect both their reputation and the trust of their customers in an increasingly digital world.