Dior announces that it has suffered a cyberattack. In a press release relayed by Le Monde, the French luxury brand indicated that it had discovered that an "unauthorized third party" had managed to penetrate its systems. The attacker was able to consult "certain customer data". The intrusion reportedly occurred at the end of January. It was only recently discovered, on May 7, 2025.
Among the compromised information were customers' names, postal addresses, email addresses, and phone numbers. This is valuable data for hackers who orchestrate scams or phishing attacks. The leak also concerns "purchase and preference data, as well as other specific information you may have shared." However, no banking or credit card data was affected.
Also read: Yet another data leak in France – a consulting firm suffered a cyberattack
Dior notifies customers affected by the leak
In parallel with this press release, Dior has begun "informing customers affected by this incident." The company has also notified many customers residing in Asia of the data leak. It is currently unclear whether people living in France are affected by the data theft. Dior has been particularly laconic.
According to the press release, "Dior teams, assisted by leading cybersecurity experts, are continuing their investigation and response to this incident." The haute couture brand specifies that it intends to notify "all relevant regulatory authorities.". In the scenario in which French people were affected, Dior will have to alert the CNIL (Commission Nationale de l'Informatique et des Libertés), the authority responsible for data protection in France.
For the moment, there is no indication that the data stolen from Dior has been put up for sale on a criminal market. Our colleagues at Le Monde have not "observed, on specialized public English- and Russian-speaking forums, any data being put up for sale." Given the habits of cybercriminals, it is nevertheless to be expected that the directory will eventually surface on black markets. Exploited by hackers, the data risks endangering affected customers. If you are a Dior customer, we recommend you exercise caution.
Dior joins the long list of French companies that have been victims of a data leak, alongside Free, SFR, Kiabi, La Poste, Chronopost, and Easy Cash. The trend continues in 2025 with dozens of companies hacked. More than 2.1 million French accounts have been hacked, according to Surfshark.
Source: Le Monde
0 Comments