Macy’s is notifying customers of a data breach involving unauthorized access to their payment card data and personal information.
From the article:
“Based on our investigation, we believe that an unauthorized third-party – from approximately April 26, 2018, through June 12, 2018 – used valid customer user names and passwords to login to customer online profiles,” the retailer said.
The breach also appears to affect customers who shopped on Bloomingdales.com, which is owned by Macy’s.
Compromised information included customer names, home addresses, phone numbers, email addresses and birthdays, as well as debit or credit card numbers with expiration dates.
However, no CVV or Social Security numbers were impacted.”
Recommended Action: If you have shopped at these online sites, please contact the issuer of the credit card you used and have the number changed.
Macy’s official notice can be read HERE.
Categories: Data Breaches