WASHINGTON — U.S. Attorney General Eric Holder told a Senate hearing Wednesday that the Justice Department is investigating the security data breach at Target Corp. as House Democrats expanded their probe into the issue, asking Neiman Marcus to explain why it took the retailer so long to discover and report a breach of its consumer data.
In a rare disclosure, Holder, who was testifying before the Senate Judiciary Committee, confirmed that his agency has opened an investigation into the Target breach, which potentially affected more than 100 million consumers.
“The Department of Justice takes seriously reports of any data breach, particularly those involving personally identifiable or financial information, and looks into allegations that are brought to its attention,” Holder said. “While we generally do not discuss specific matters under investigation, I can confirm the department is investigating the breach involving the U.S. retailer Target, and we are committed to working to find not only the perpetrators of these sorts of data breaches, but also any individuals and groups who exploit that data via credit card fraud.”
Target reported a breach last month that the retailer initially said affected 40 million consumers who purchased goods in stores and who potentially had their debit and credit card information stolen. The retailer later said another 70 million consumers may have had personal data such as their names, addresses, e-mail addresses and phone numbers taken.
The cyber attacks have sparked probes on Capitol Hill and have prompted lawmakers to schedule hearings on the issue. John Mulligan, Target’s executive vice president and chief financial officer, is slated to testify Tuesday at a hearing on cyber crime and privacy before the Senate Judiciary Committee.
In separate action on Wednesday, two House Democrats, Henry Waxman of California and Jan Schakowsky of Illinois, sent a letter to Karen Katz, Neiman’s president and chief executive officer, seeking information about the security breach at the chain, as the House Energy and Commerce Committee prepares to hold its own hearing into the incident next week.
“While the immediate concerns relate to securing customer information and preventing fraudulent charges, there are many unanswered questions about this cyber attack and its implications for consumer privacy and data security,” the lawmakers wrote. “Questions remain about how exactly this attack was carried out, who was responsible, whether it could have been prevented, how Neiman Marcus responded, and how retailers and customers can protect themselves going forward.”
Waxman and Schakowsky said their key questions include whether the attacks against Target, Neiman’s and possibly Michaels Stores were related; why the breach took so long to discover, and why Neiman’s took as long as it did to disclose the breach and notify customers.
They asked Katz for all of Neiman’s written policies or guidelines related to threat monitoring, network security or point-of-sale protection, all documents listing how much Neiman’s has spent on network security systems and personnel, and all documents pertaining to Neiman’s response and public notification activities relating to the breach.
“Although we are still in the middle of our forensic investigation and therefore do not have all of the information about the data security incident, we want to assist Congress as it attempts to be responsive to the important data security issues facing our country,” a Neiman’s spokeswoman said in an e-mail. “We have been open and forthright in responding to requests from members of Congress, including our detailed response to Senator [Richard] Blumenthal [D., Conn.] last week, and Neiman Marcus therefore looks forward to participating in the upcoming Congressional hearings and to providing information we have available to us at this time.”
Earlier this month, Blumenthal called on Neiman’s to provide two years of free credit monitoring and identity theft insurance to all of its customers, which the company agreed to do.
“I’m pleased Neiman Marcus responded promptly and thoroughly to my inquiry,” Blumenthal said. “The month required to uncover and confirm this sophisticated malware scheme left consumers severely at risk, but the company apparently moved diligently and quickly when its investigation warranted. This incident shows how innovative, malicious software with self-concealing, camouflaging features is difficult to successfully and rapidly investigate or stop.”
“All retailers have an obligation to enhance protections against cyber attacks with better cyber firewalls and fortresslike defenses. Consumers deserve and need these protections,” Blumenthal said.
“I think what’s so interesting about the #MeToo movement and this whole new wave of feminism in general, is that women are finally seeing, ’Oh I can start my own company, oh I can lear to code, oh I can leave my nine-to-five job and do the thing I want to do,” said @brooklyndecker ahead of her @sxsw talk for @createcultivate. The former model took the stage to share wisdom about networking and female-driven entrepreneurship. #wwdeye #sxsw (📷: @jgreenery)
“I was making the guacamole when my scout saw me,” says model @stuckinteenage on being discovered just six months ago while working at @chipotlemexicangrill. Since then Williams has signed with @dnamodels, walked in her first show at @calvinklein and landed on the cover of @vogueitalia – a high point of any model’s career. To read @lisajlockwood’s full interview with the model on her experiences thus far, head to WWD.com – link in bio. (📷: George Chinsee)
“I love the idea of dialogue, period. It’s where I’ve always gotten my inspiration from: hearing other women speak, their journeys and their paths,” said @hereisgina, who delivered the keynote speech at the @sxsw conference for @createcultivate, the online platform and conference series for women. For her two panels, Rodriguez chose female empowering, female-led and female entrepreneurs to focus on. Head to WWD.com to read more about her thoughts on Time’s Up, growing up in a family of women and why we “need a girls’ club.” #wwdeye #sxsw (📷: @jgreenery)
Leading luxury brand are shaking things up to keep up with streetwear. Case in point: the arrival of @mrkimjones as artistic director of @diorhomme. Jones, who succeeds @Kris_Van_Assche, is seen as one of the handful of designers who can actually straddle the luxury and streetwear worlds — which could lead to even more changes at established brands. What could this mean for the rest of the menswear landscape? Head to WWD.com to find out what experts predict #wwdfashion (📷: @franckmura)
“It’s like buying groceries. You’re going to buy the best mango, the best mozzarella, the best things. You have to, or others are going to take it all,” said @gabrielahearst on why she uses only the finest fabrics. Last week, Hearst received her first @cfda nomination for Womenswear Designer of the Year, and earlier this month she opened a permanent showroom in Paris. To read @jessiredale’s interview with the designer and find out why this is shaping up to be a big year for her, head to WWD.com. #wwdfashion (📷: @francoisgoize)
“It’s an interesting thing, playing a younger version of your mother. It’s an interesting concept. I adore my mom and love her in every capacity, but it was just something that had never crossed my mind,” says @anniemstarke on playing a young Joan Castleman in “The Wife.” The same role will be played by her mother Glenn Close. Read more about her growing up in the film industry as the daughter of producer John H. Starke and Close and what she has planned for the future #wwdeye (📷: @nataliamantini)
@asics is launching a new streetwear sneaker inspired by its latest ambassador, @steveaoki. The Hyper-Kenzen x Aoki, which will launch at @footlocker stores exclusively tomorrow, is a slip-on style that incorporates the brand’s proprietary Gel technology through beads integrated into the midsole for comfort and endurance. Read the full story on WWD.com.