Macy’s and Bloomingdale’s notify customers of attack

Thanks to Catalin Cimpanu of Bleeping Computer. Catalin called my attention to a notification from Macy’s about a breach affecting Macys.com and Bloomingdales.com customers.

I had actually tweeted about that breach notification last week but I seem to have forgotten to post anything here. What I had tweeted was:

I don’t often see this kind of detail in a #databreach notification to a state AG’s office, but look at what Macy’s/Bloomingdales sent to the NH AG. Full notification can be found here: https://t.co/5Rr8q0F95P pic.twitter.com/n9hy8audn2

— Dissent Doe (@PogoWasRight) July 6, 2018

Here’s the full notification letter to the New Hampshire Attorney General’s Office:

macys-20180702

Cyber-Attack On Bectu’s Parent Union Sparks UK National Security Concerns
Attorney General James Announces Settlement with Wojeski & Company Accounting Firm
John Bolton Indictment Provides Interesting Details About Hack of His AOL Account and Extortion Attempt
A business's cyber insurance policy included ransom coverage, but when they needed it, the insurer refused to pay. Why?
Scenes from a "No Kings" Protest, 10-18-25
No Kings. Not Today. Not Ever.

Related: