Now Neiman Marcus Says It Was Hit by Data-Thieving Hackers

The Citizen's Guide to the Future
Jan. 13 2014 3:30 PM

Now Neiman Marcus Says It Was Hit by Data-Thieving Hackers

neimanmarcus
It seems like consumers can't catch a break. Neiman Marcus is the latest retailer, following Target, to reveal that its customer credit and debit card data was compromised during the holiday shopping season.

Photo from ja.wikipedia.org

Neiman Marcus released a statement late Friday admitting that it's known since mid-December about a security breach in its customer credit card data. The Secret Service and a private forensics firm are investigating, and it appears that transactions on Neiman Marcus’ website were not affected. But it is still unclear how many card numbers or how much customer data was stolen.

Lily Hay Newman Lily Hay Newman

Lily Hay Newman is lead blogger for Future Tense.

The situation is especially concerning given recent news that 40 million credit and debit card numbers, and personal information from 70 million people, was stolen from Target. Though there is currently no evidence that the Neiman Marcus and Target hacks are related or were perpetrated by the same people, their close timing in mid-December could indicate a connection.

Advertisement

Reuters reported Monday morning that at least three other prominent U.S. stores, possibly outlet mall chains, recently had credit card data hacked. Security journalist Brian Krebs told NPR’s Planet Money recently that in the last three years, “I would say things have gotten bigger, the bad guys are getting smarter and more efficient at moving this information once it's stolen.”

Though it is unclear how much of this is related, “law enforcement sources” told Reuters that they are looking into major Eastern European hackers who have been responsible for a significant portion of cybercrime in the last 10 years.

The growing problem is also raising questions about whether banks or retailers are responsible for costs when a security breach requires action to protect consumers and stop unauthorized spending. The debate is prompting plans for a Senate banking committee hearing in the next few weeks.

Banks and retailers are pointing the finger at each other. But both need to take steps toward better security. For instance, often people who buy stolen card numbers fabricate dummy cards with those digits to use for in-person transactions. Security features that made cards significantly harder to fake—like adding internal chips on which identifying information is encrypted or requiring PIN numbers for all purchases—could deter criminals from that approach. And if retailers had better security on their internal servers, keeping card numbers and other sensitive data encrypted at almost all times, hackers would have less to gain from infiltrating corporate databases.

Short of completely eliminating the problem, of course, the goal should be reducing the likelihood of these enormous jackpots: Hackers shouldn't be able to get 40 million card numbers just by accessing information from one large retailer. Repeated “success” makes this particular type of cyber crime increasingly appealing, which will lead to more incidents if things don’t change.

Future Tense is a partnership of SlateNew America, and Arizona State University.

TODAY IN SLATE

Medical Examiner

The Most Terrifying Thing About Ebola 

The disease threatens humanity by preying on humanity.

I Bought the Huge iPhone. I’m Already Thinking of Returning It.

Scotland Is Just the Beginning. Expect More Political Earthquakes in Europe.

Students Aren’t Going to College Football Games as Much Anymore

And schools are getting worried.

Global Marches Demand Action on Climate Change

Politics

Blacks Don’t Have a Corporal Punishment Problem

Americans do. But when blacks exhibit the same behaviors as others, it becomes part of a greater black pathology. 

Why a Sketch of Chelsea Manning Is Stirring Up Controversy

How Worried Should Poland, the Baltic States, and Georgia Be About a Russian Invasion?

Moneybox
Sept. 19 2014 1:11 PM Americans' Inexplicable Aversion to the 1990s
  News & Politics
Weigel
Sept. 20 2014 11:13 AM -30-
  Business
Business Insider
Sept. 20 2014 6:30 AM The Man Making Bill Gates Richer
  Life
Quora
Sept. 20 2014 7:27 AM How Do Plants Grow Aboard the International Space Station?
  Double X
The XX Factor
Sept. 19 2014 4:58 PM Steubenville Gets the Lifetime Treatment (And a Cheerleader Erupts Into Flames)
  Slate Plus
Tv Club
Sept. 21 2014 1:15 PM The Slate Doctor Who Podcast: Episode 5  A spoiler-filled discussion of "Time Heist."
  Arts
Brow Beat
Sept. 21 2014 2:00 PM Colin Farrell Will Star in True Detective’s Second Season
  Technology
Future Tense
Sept. 19 2014 6:31 PM The One Big Problem With the Enormous New iPhone
  Health & Science
Bad Astronomy
Sept. 21 2014 8:00 AM An Astronaut’s Guided Video Tour of Earth
  Sports
Sports Nut
Sept. 18 2014 11:42 AM Grandmaster Clash One of the most amazing feats in chess history just happened, and no one noticed.