Christian Dior Couture, a luxury fashion house owned by Louis Vuitton, experienced a significant cybersecurity incident that exposed sensitive personal information of its customers. The breach, discovered in May 2025, involved unauthorized access to customer databases containing personal data including names, addresses, dates of birth, and in some cases, Social Security numbers. The incident occurred on January 26, 2025, but was not detected until May 7, 2025. The affected database contained extensive personally identifiable information (PII) such as passport numbers, government-issued ID numbers, and Social Security numbers. No financial data was compromised, but the breach raised concerns about identity theft risks. Dior has implemented several remediation measures, including enhanced network security and complimentary credit monitoring services for affected customers.
Source: https://cybersecuritynews.com/louis-vuitton-cyber-attack/
TPRM report: https://www.rankiteo.com/company/christian-dior-couture
"id": "chr706072225",
"linkid": "christian-dior-couture",
"type": "Breach",
"date": "1/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Fashion',
'name': 'Christian Dior Couture',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'customer_advisories': 'Dedicated breach response line: 1-833-918-5938, '
'engagement number B147873',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['PII',
'passport numbers',
'government-issued ID numbers',
'Social Security numbers']},
'date_detected': '2025-05-07',
'description': 'Christian Dior Couture, the luxury fashion house owned by '
'Louis Vuitton, has begun notifying customers of a major '
'cybersecurity incident that exposed sensitive personal '
'information of clients.',
'impact': {'data_compromised': ['names',
'addresses',
'dates of birth',
'passport numbers',
'government-issued ID numbers',
'Social Security numbers'],
'identity_theft_risk': 'High',
'payment_information_risk': 'None',
'systems_affected': 'Customer database systems'},
'initial_access_broker': {'entry_point': 'Customer database systems'},
'investigation_status': 'Completed',
'post_incident_analysis': {'corrective_actions': 'Enhanced network security '
'measures'},
'references': [{'source': 'Dior Official Notification'}],
'response': {'communication_strategy': 'Customer notifications and dedicated '
'breach response line',
'containment_measures': 'Comprehensive investigation and '
'containment measures',
'incident_response_plan_activated': True,
'law_enforcement_notified': True,
'remediation_measures': 'Enhanced network security measures',
'third_party_assistance': True},
'threat_actor': 'Unspecified third party',
'title': 'Dior Customer Database Breach',
'type': 'Data Breach'}