Neiman Marcus Data Breach Exposes Thousands, Hacker Claims Millions

The retailer confirms theft of personal information from its Snowflake database, affecting over 64,000 customers, while the attacker alleges a far larger scope.

• Neiman Marcus disclosed a data breach impacting 64,472 customers, with personal information stolen from its Snowflake database.
• The hacker, known as Sp1d3r, claims to have data on 180 million users, including sensitive details like Social Security numbers and shopping records.
• The stolen data is being sold on a cybercrime forum for $150,000, with the attacker attempting to extort the retailer.
• Snowflake and cybersecurity experts attribute the breach to compromised credentials and lack of multi-factor authentication.
• At least 165 organizations have been affected by similar Snowflake data breaches, highlighting a broader security issue.

3 Articles

WWD The Register BleepingComputer