Neiman Marcus Group is alerting millions of customers that their online accounts may be compromised.
The company said in a news release on Thursday that it is notifying 4.6 million customers that information linked to their online accounts may have been obtained by a third party in May 2020.
That information includes contact details, payment card numbers, gift card numbers and usernames and passwords, Neiman Marcus said.
According to a news release, of the 4.6 million customers affected, “nearly 3.1 million payment and virtual gift cards were affected, of which more than 85% have expired or become invalid.”
Neiman Marcus said it has alerted law enforcement and is working with cyber security firm Mandient to investigate the situation.
“At Neiman Marcus Group, customers are our top priority,” said the company’s chief executive officer, Geoffroy van Reemdonck, in a news release. “We are working hard to support our customers and answer questions about their online accounts. We will continue to take action to enhance the security of our systems and protect information.”
The company said it had no evidence that its subsidiaries Bergdorf Goodman or Horchow were affected.
Corporations are prime targets for hackers. In June, at least four major companies, including McDonald’s and Volkswagen, were affected by cyberattacks.
And in May, a ransomware attack shut down the Colonial Pipeline for six days – a major East Coast line that carries gas to millions of people. A few days later, food processor JBS USA also suffered a cyber attack that affected the servers supporting its IT systems.
– CNN Business’ Jordan Walinsky contributed to this report.