ON AIR NOW

LISTEN NOW

Weather

Sponsored By: Two Men and a Truck
cloudy-day
76°
Partly Cloudy
H 93° L 78°
  • cloudy-day
    76°
    Current Conditions
    Partly Cloudy. H 93° L 78°
  • cloudy-day
    90°
    Afternoon
    Partly Cloudy. H 93° L 78°
  • partly-cloudy-tstorms-day
    84°
    Evening
    Sct Thunderstorms. H 93° L 78°
LISTEN
PAUSE
ERROR

The latest top stories

00:00 | 00:00

LISTEN
PAUSE
ERROR

The latest traffic report

00:00 | 00:00

LISTEN
PAUSE
ERROR

The latest forecast

00:00 | 00:00

Report: Neiman Marcus missed 60,000 alerts about card hack

One month after Neiman Marcus was struck by a massive credit card hack, a new report published by Businessweek sheds more light into the breach. Among the revelations: The company apparently missed almost 60,000 security alerts about the hack.

According to an internal investigation by the high-end retailer, hackers infiltrated Neiman Marcus's computer system on March 5, 2013. Four months later, malware began stealing user information from Neiman Marcus stores around the country.

The company first disclosed the hack on Jan. 10, saying the malware had been active from July 16 to October 30. Company CEO Karen Katz previously told customers that over 1.1 million credit cards could have been compromised; that estimate has dropped to 350,000, with 9,200 showing signs of fraud.

>> Read more trending stories

The offending malware automatically reinstalled itself on Neiman Marcus registers after they had been wiped clean for the day — and in the process, the program tripped almost 60,000 security alerts.

How did the store miss such a massive breach?

A company spokeswoman told Businessweek the alerts were spread out over almost three months, and "would have been on average around 1 percent or less of the daily entries on these endpoint protection logs, which have tens of thousands of entries every day."

Gizmodo notes hackers took care to keep their intrusion inconspicuous — and took advantage of an odd security oversight on Neiman Marcus's part.

"The hackers gave their malicious software a name nearly identical to the official payment software, making it tough to distinguish suspicious activity from false positives. ... Neiman Marcus's system could have been set to automatically block the malware as soon as it detected anomalous activity but that feature was turned off because it was hampering legitimate maintenance programs."

Neiman Marcus was just one of the stores targeted during a rash of retailer data thefts in 2013 — most notably Target, which may have compromised the personal information of 110 million customers. The Justice Department is investigating both incidents, and Target is reportedly working on producing more secure credit cards, according to both C-SPAN and CNET.

One more interesting tidbit from the report — apparently the Neiman Marcus thieves aren't likely to be related to the Target hackers since they used a different methodology and have distinct coding styles.

Read More
VIEW COMMENTS

There are no comments yet. Be the first to post your thoughts. or Register.

The Latest News Headlines

  • A mother was charged after she was accused of leaving her two young children locked in a car for nearly three hours Sunday night in Charlotte, North Carolina. >> Watch the news report here The 4- and 5-year-old girls had to be hospitalized. Millicia Middleton, 25, went before a judge Tuesday after being charged with child abuse. >> Waze traffic app includes feature to remind parents of children in car 'I live here so I wish I had seen it,” resident Vicki Butler said. “I mean, at least I could have got them, that hurts me. I'm sorry.' The girls were dehydrated by the time officers got them out of the car in the parking lot of new apartments on Samuel Street. >> Read more trending news 'That makes me so sad,” resident Shanna Henriques said. “How can you be a parent and just leave your kids in the car? What did they do? Forget about them or something?
  • David Garcia-Mendoza was drunk and high and wanted something for nothing on Oct. 1, 2016, when he climbed into a cab on Buford Highway. Luz Mariana Matheu, 43, was behind the wheel for OK Taxi that night in Chamblee. Garcia-Mendoza, 21 at the time, said he would pay her with drugs, which Matheu refused. >> Read more trending news  As they argued, the young man placed a gun to the woman’s head and forced her to drive, according to authorities. In a few moments, he pulled the trigger and ran away when the car crashed. But police found him hiding in a kudzu patch, and he’s now pleaded guilty to felony murder, kidnapping and aggravated assault, the DeKalb County District Attorney’s Office announced Tuesday. RELATED: Officials knew of no red flags before baby’s DeKalb hot car death RELATED: Cops: Before DeKalb killing, suspect said ‘You know what time it is’ RELATED: With everyone else, father of baby killed in hot car seeks answers “During a police interrogation,” DA’s spokeswoman Yvette Jones said, “the Defendant admitted being under the influence of drugs and alcohol and shooting the victim because she would not accept drugs as payment for his taxi ride.” Now 22, Garcia-Mendoza was sentenced to life plus five years in prison by Judge Gregory A. Adams.
  • WHBQ in Memphis, Tennessee, has uncovered new details in the Southaven, Mississippi, police shooting death of Ismael Lopez. Lopez was shot after police served a warrant at the wrong home. >> Watch the news report here A search warrant WHBQ obtained out of Tate County, Mississippi, showed the address on the warrant was across the street from Lopez’s home. Police came to the neighborhood for Samuel Pearman, who is wanted in Tate County and lived at 5878 Surry Lane. Deputies said an arrest warrant was issued for Pearman on a domestic aggravated assault charge after he allegedly choked a woman Sunday in front of her 4-year-old child at a Tate County gas station.  Neighbor Kimberly Shelby told WHBQ that Lopez’s death is on the hands of the Southaven Police Department after they served a warrant at the wrong home. 'You would think they would be over here trying to find him at the right address,” Shelby said. Shelby said police have been to Pearman’s home before.  >> Read more trending news 'I've called the police before ... so they have dealt with him before,” Shelby said. Lopez’s family said they have been advised by their lawyers to not make any more comments about the case on camera. Neighbors said they hope the law will hold the officers accountable for this deadly mistake.
  • An Arizona man is facing child abuse accusations after he allegedly stranded his 10-year-old daughter in a desert with no shoes or water. According to KSNV, Christopher Charles Watson, 28, of Kingman was arrested on one count of felony domestic child abuse after a woman called 911 on Saturday morning, claiming she had found a girl crying and walking by herself in the 91-degree heat. >> Read more trending news According to the victim, her father drove her out to the desert and forced her out of his truck following an argument, deputies said. She reportedly complained of a headache and a sore neck and added that she had hit her head on the truck while trying to open the door as her father sped off. Deputies said they also noticed a bite mark on her, and she told them her father had bitten her. She was taken to a nearby hospital where she was treated and later released, KVVU reported. Deputies said Watson smelled of alcohol when they arrived at his home and woke him from a nap. Deputies said the father claimed he and his daughter were arguing when he decided to take her for a ride in his truck, which he says has helped calm her down in the past. Watson reportedly told authorities that he had dropped her off without any water or shoes but said he returned home and waited only about 15 minutes before going back to get her. However, he said he was unable to find the girl when he returned to the desert. The Department of Child Safety has taken custody of both the victim and Watson’s 9-year-old son.

The Latest News Videos