On June 24, 2024, the Neiman Marcus Group (NMG) reported a data breach to the Office of the Maine Attorney General in Maine, detailing the incident as an external system breach, commonly referred to as data breach, which impacted 64,472 individuals. The data breach took place on April 14, 2024, but was only detected on May 24, 2024, as stated in the data breach notification. Affected individuals were notified through a letter. “We are writing to notify you of an issue that involves certain of your personal information. In May 2024, we learned that, between April and May 2024, an unauthorized third party gained access to a database platform used by Neiman Marcus Group. Based on our investigation, the unauthorized third party obtained certain personal information stored in the database platform. The types of personal information affected varied by individual, and included information such as name, contact information, date of birth, and Neiman Marcus or Bergdorf Goodman gift card number(s) (without gift card PINs).” (Darcy Penick, President of Bergdorf Goodman and Head of NMG Product & Technology President of NMG, personal communication, July 24, 2024)

The Neiman Marcus Group, based in Dallas, Texas, is a leading multi-brand luxury retailer in the U.S., known for delivering the world’s most desired brands to the true luxury customer in stores, online, and through remote selling. The group’s flagship brands include Neiman Marcus and Bergdorf Goodman, that provide a curated product assortment, luxury services, and exclusive activations for customers in pursuit of the extraordinary. NMG is revolutionizing luxury experiences for their customers, brand partners, communities, and associates through their relationship business.

After the incident, a notice regarding the data security breach at NMG was published on their website for customers to be informed. “Promptly after learning of the issue, we took steps to contain it, including by disabling access to the database platform. We also launched an investigation with the assistance of leading cybersecurity experts and are coordinating with law enforcement. We will continue to enhance our safeguards for protecting personal information,” NMG stated.