Neiman Marcus settled a class action lawsuit for $1.5 million that was brought after the department store suffered a data breach in 2014.
The settlement was reached with the attorney generals in 43 states and the District of Columbia where the victims resided. The point-of-sale breach took place in 2013, but was not noticed by the retailer until January 2014. About 370,000 payment cards that were used in 77 stores were compromised in the attack, which took place during the same time period as the infamous Target breach.
In addition to the monetary payment, the deal has the high-end retailer agreeing to boost its cybersecurity stance by complying with payment card industry data security standard practices, monitor its network activity, update its security software and use encryption and tokenization to protect payment card information that it holds, the Georgia Albany Herald reported.
Please register to continue.
Already registered? Log in.
Once you register, you’ll receive:
The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.
Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.
SC Media’s essential morning briefing for cybersecurity professionals.
One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.