Neiman Marcus to Pay $1.5 Million under Data Breach Settlement
The State of Security
Neiman Marcus Group, Inc. has agreed to pay $1.5 million as part of a settlement for an earlier data breach that exposed customers’ information.
Ken Paxton, Attorney General of Texas, announced on 8 January that he and his fellow Attorneys General from 42 other states will enter into the $1.5 million settlement with Neiman Marcus.
The Attorneys General of Connecticut and Illinois, the lead states of the investigation, will communicate what amount Neiman Marcus must pay to each state’s Attorney General under that agreement. The American chain of luxury department stores will then divide up the $1.5 million payment accordingly and distribute it to the Attorneys General.
This settlement effectively resolves an investigation into a 2013 data breach that exposed Neiman Marcus customers’ accounts. In the security incident, bad actors secretly installed malware on the company’s systems. They then used that malware to scrape the payment card information of 1.1 million customers between 16 July 2013 and 30 October 2013.