Thanks to Catalin Cimpanu of Bleeping Computer. Catalin called my attention to a notification from Macy’s about a breach affecting Macys.com and Bloomingdales.com customers.
I had actually tweeted about that breach notification last week but I seem to have forgotten to post anything here. What I had tweeted was:
I don’t often see this kind of detail in a #databreach notification to a state AG’s office, but look at what Macy’s/Bloomingdales sent to the NH AG. Full notification can be found here: https://t.co/5Rr8q0F95P pic.twitter.com/n9hy8audn2
— Dissent Doe (@PogoWasRight) July 6, 2018
Here’s the full notification letter to the New Hampshire Attorney General’s Office:macys-20180702