Cyber Incident at Australian Luxury Brand Camilla Exposes Customer Data
Australian luxury lifestyle brand Camilla confirmed a cyber incident in April, where an unauthorized third party accessed and exfiltrated company data. The breach was detected promptly, prompting immediate containment efforts and an internal investigation. Camilla also notified the Office of the Australian Information Commissioner as required by law.
The incident was confined to the company’s Australian operations, with no impact on international systems. Business operations, including in-store and online order processing, remained unaffected.
The compromised data included customer names, dates of birth, email addresses, and phone numbers all stored within Camilla’s point-of-sale system. The company clarified that no payment card details, banking information, or other financial data were accessed. Affected customers were directly notified and advised on precautions against potential scams.
Camilla stated it is continuing its investigation and reinforcing security measures to prevent future incidents. The company emphasized its commitment to safeguarding customer privacy.
Camilla TPRM report: https://www.rankiteo.com/company/camilla-australia
"id": "cam1780446378",
"linkid": "camilla-australia",
"type": "Breach",
"date": "6/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Affected customers were '
'directly notified',
'industry': 'Luxury Lifestyle/Brand',
'location': 'Australia',
'name': 'Camilla',
'type': 'Company'}],
'customer_advisories': 'Advised on precautions against potential scams',
'data_breach': {'data_exfiltration': 'Yes',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'Names, dates of birth, email '
'addresses, phone numbers',
'type_of_data_compromised': 'Customer personal data'},
'date_detected': '2024-04',
'description': 'Australian luxury lifestyle brand Camilla confirmed a cyber '
'incident in April, where an unauthorized third party accessed '
'and exfiltrated company data. The breach was detected '
'promptly, prompting immediate containment efforts and an '
'internal investigation. The compromised data included '
'customer names, dates of birth, email addresses, and phone '
'numbers. No payment card details, banking information, or '
'other financial data were accessed.',
'impact': {'data_compromised': 'Customer names, dates of birth, email '
'addresses, phone numbers',
'identity_theft_risk': 'Potential scams',
'operational_impact': 'None (in-store and online order processing '
'remained unaffected)',
'payment_information_risk': 'None',
'systems_affected': 'Point-of-sale system (Australian operations '
'only)'},
'investigation_status': 'Ongoing',
'post_incident_analysis': {'corrective_actions': 'Reinforcing security '
'measures'},
'references': [{'source': 'Company Statement'}],
'regulatory_compliance': {'regulatory_notifications': 'Office of the '
'Australian Information '
'Commissioner'},
'response': {'communication_strategy': 'Direct notifications to affected '
'customers',
'containment_measures': 'Immediate containment efforts',
'incident_response_plan_activated': 'Yes',
'remediation_measures': 'Reinforcing security measures'},
'threat_actor': 'Unauthorized third party',
'title': 'Cyber Incident at Australian Luxury Brand Camilla Exposes Customer '
'Data',
'type': 'Data Breach'}