Dior suffers data breach on specific customer information.
样例:Luxury brand Dior suffers data breach, but no financial info leaked, say officials
Looks like the glamorous world of fashion ain't immune to cyber shitstorms. According to a report by AFP, luxury brand Dior, owned by LVMH, has become the latest victim of an unauthorized cyberattack, with an unspecified amount of client data being accessed, but thankfully, no bank details or credit card info were touched.
In a statement to the press, Dior confirmed that they recently discovered an unauthorized third party had accessed certain customer data. They swiftly acted to contain the breach and are currently collaborating with leading cybersecurity experts to investigate further. The company is also informing the relevant regulatory authorities about the incident and contacting affected clients.
According to French newspaper Le Monde, Dior customers in Asia received a message on May 13, alerting them of the data theft. The data breach reportedly includes the names, mailing addresses, email addresses, and phone numbers of the affected clients.
Worth mentioning, Dior is one of the two main couture brands owned by the world's leading luxury company, LVMH, with a revenue of €8.7 billion (CAD$13.6 billion) in 2024.
Now, here's the lowdown on what actually went down:
- Upon discovering the breach, Dior sprang into action on May 7, activating its incident response plan to contain the breach and prevent further unauthorized access.
- The breach exposed various categories of personal data, including customer names, contact information, past purchase details, loyalty program data, and partial payment details.
- The breach primarily affected customers in South Korea and China, with notifications sent to consumers in these regions.
- The hackers apparently used the outdated BAV2ROPC protocol between March 18 and April 7, 2025, although Dior's official statement does not confirm this attack vector.
- Dior has deployed a specialized team of cybersecurity experts to conduct a forensic investigation of the breach, report the incident to relevant data protection authorities, and notify affected customers of the situation.
In short, the incident serves as a grim reminder that luxury brands remain vulnerable to cyber threats, even if financial details remain safe. Customers should remain vigilant against phishing and identity theft attacks, monitor their accounts, and take appropriate measures to protect their sensitive information. The ongoing investigation and response from Dior are promising signs, and we'll keep you posted as new information surfaces.
Despite the breach, Dior managed to secure their customers' financial information, ensuring their bank details and credit card info remained unaffected. This unfortunate incident highlights the need for robust cybersecurity measures in the business sector, including technology-centric industries like fashion.
