Macy’s Data Breach: What You Need To Know

What do you need to know about Macy’s data breach? Also, what can you do to protect your data?

Read on to learn more.


But first, what is a data breach?

A data breach is one of the security incident types. It leaks sensitive data of an organization or a person.

These data may include:

  • names
  • addresses
  • email addresses
  • debit or credit card accounts
  • government information
  • trade secrets

So, how do breaches happen?

A data breach happens because of weak security. So, attackers take advantage of that. Then, they steal information.

Now, we know what a data breach means. What happened to Macy’s data breach?

Macy’s Data Breach

Macy’s is a well-known clothing brand. Unfortunately, it suffered a breach last October 2019.

Moreover, the breach leaked the private information of their customers. It includes:

  • full names
  • phone numbers
  • email addresses
  • credit card numbers and codes
  • billing addresses
  • cities
  • states
  • ZIP codes

In addition, it affected the payment card numbers of:

  • Visa holders
  • American Express
  • MasterCard

Furthermore, the brand itself confirmed the breach. Macy’s stated that it happened for a week.

Thus, they alerted their customers. They also sent a notification letter after one month of the incident.

But you may ask, how did the breach happen?

How the Breach Happened

Like many other breaches, there was a third-party. Hackers invaded Macy’s website system.

Also, they installed skimming software into the system. This malware got the wallet page and checkout system of the website. So, the hackers were able to gather credit card information.

Additionally, reports revealed who the hackers were. They stated that it was an attack from Magecart.

Magecart is popular in stealing digital credit cards. Sadly, it is hard to fix attacks from this cybercrime group.

They used infected JavaScript files. Then, they store the shoppers’ information when they enter the checkout pages.

It is also noticeable that these JS files are invisible to shoppers. So, Macy’s is responsible for fixing this incident.

Besides, every retailer should check their sites regularly. Otherwise, there can be hidden malware and codes from hackers.

Macy’s Action

As mentioned, Macy’s fixed the issue after a week. They also reported the incident to the law authorities.

Moreover, they hired cyber experts to help them deal with the breach. Macy’s also offered free consumer protection services to their customers.

This consumer protection came from Experian. They specialize in giving additional protection to accounts.

So, it enables their customers to close accounts easily. Especially if their private information is exposed.

Also, customers can freeze their credit cards if suspicious charges happen. Lastly, the government can help if identity theft takes place.

Protect Your Data

You may be worried about the breach if you are a Macy’s shopper. So, how can you protect your data?

Here are some steps you can follow.

  1. Stay updated. Be alert on identity theft incidents.
  2. Track your statement accounts. So, if you notice an unusual card transaction, report it immediately.
  3. Contact your bank or card issuer. If fraud or identity theft happens, they can assist you. So, you can protect your card and bank accounts.
[Total: 0   Average: 0/5]

Leave a Comment

Your email address will not be published. Required fields are marked *