French luxury giant Dior has revealed that a recent cyberattack resulted in the theft of customer data, though the company assures that no financial details were compromised in the breach.
The announcement comes after several clients in Asia alerted the brand to suspicious activity, with the breach reportedly occurring in January 2025.
In a statement issued on Wednesday, Dior acknowledged that an unauthorized third party gained access to certain personal information held by the company.
“The House of Dior recently discovered that an unauthorized third party accessed certain customer data we hold. We immediately took steps to contain this incident,” the company said.
While Dior did not disclose the exact number of affected customers, it emphasized that sensitive financial information—such as bank card numbers—was not part of the stolen data.
Instead, the compromised information reportedly included customers’ names, email addresses, postal addresses, and telephone numbers.
The luxury brand is currently working alongside top cybersecurity experts to investigate the incident thoroughly and manage its aftermath. Dior also confirmed it is cooperating with relevant regulatory authorities and is in the process of notifying impacted customers.
The cyberattack on Dior is part of a growing wave of digital threats targeting luxury brands and retailers globally. In recent months, several high-profile companies have fallen victim to similar breaches.
British retailer Marks and Spencer disclosed on Tuesday that personal data of some customers had been stolen during a cyberattack that significantly disrupted its online services for weeks.
Other notable victims include luxury department store Harrods and the UK-based Co-op food chain, which have also experienced cyber intrusions in recent weeks.
Dior is one of the flagship brands of the LVMH group, alongside Louis Vuitton. The company reported a turnover of €8.7 billion (approximately $9.7 billion) in 2024, according to HSBC bank figures.
The luxury sector, while highly profitable, has become an increasingly attractive target for cybercriminals due to the valuable personal data associated with wealthy clientele.
This latest attack underscores the ongoing cybersecurity challenges faced by companies in the luxury market, which must balance the demand for exclusive, high-end customer experiences with the imperative to protect personal and sensitive data.
Cybersecurity analysts warn that attacks on the luxury sector often aim to harvest personal data for identity theft, phishing scams, and other fraudulent activities, even when financial information remains secure.
With more transactions and client interactions taking place online, companies are urged to invest heavily in security infrastructure to safeguard their customers.
French authorities have become increasingly vigilant regarding cyberattacks, particularly those attributed to state-sponsored hacking groups.
Earlier this year, France officially attributed a series of cyberattacks to Russian actors, marking a significant step in its response to growing digital threats.
Dior’s swift response and transparent communication about the breach reflect the heightened awareness and urgency in the industry to protect consumer data.
The company’s ongoing investigation and efforts to mitigate the impact on affected customers remain key to restoring trust.
As cybercriminal activity continues to rise globally, luxury brands and retailers face mounting pressure to implement robust cybersecurity measures to prevent data breaches and protect their reputation in a highly competitive market.
This article was created using automation technology and was thoroughly edited and fact-checked by one of our editorial staff members
