Recent Neiman Marcus shoppers might want to check their bank statements for suspicious activity. The company confirmed that 1.1 million payment cards could have been scraped for data.
Through a statement posted on Neiman Marcus’ website, the company said that malware was installed on the company’s systems and actively collected data from debit and credit cards used in-store between July 16 and October 30, 2013.
Neiman Marcus also confirmed that 2,400 customers had seen fraudulent charges on their payment cards.
Social security numbers were not compromised during the breach. The company also said that online shoppers and Neiman Marcus card holders have not reported suspicious activity on their accounts.
This is the second retail data breach in recent months. Target Corp was victim to a similar malware attack in mid-November, which scraped data including names, credit and debit card information, and home and email addresses. The breach potentially impacted 110 million customers, according to Target.
Neiman Marcus did not give specific details on how it plans to beef up security, but the company did mention that it is currently reviewing and “hardening” its systems.