Luxurious style big Louis Vuitton confirmed that breaches impacting prospects within the UK, South Korea, and Turkey stem from the identical safety incident, which is believed to be linked to the ShinyHunters extortion group.
Since final week, the retailer has been notifying prospects that their data was uncovered in a knowledge breach, first in South Korea, then in Turkey, and on Friday in the UK.
“Regardless of all safety measures in place, on July 2, 2025, we grew to become conscious of a private knowledge breach ensuing from the exfiltration of sure private knowledge of a few of our shoppers following an unauthorized entry to our system,” reads Louis Vuitton’s knowledge breach notifications despatched to prospects.
“We wish to guarantee you that our cybersecurity groups have taken care of the incident with the utmost diligence and a focus. Technical measures had been instantly taken to comprise the incident after its occurence, notably by blocking the unauthorized entry.
“Louis Vuitton groups are mobilized to cooperate with the competent authorities which have been notified, together with the Info Commissioner’s Workplace (the ICO).”
Supply: Teytey2022 (Reddit)
In a press release to BleepingComputer, Louis Vuitton confirmed that no cost info was compromised from the database accessed in the course of the incident.
The corporate additional said that it’s working with cybersecurity consultants to research the incident and has begun notifying related regulators.
When requested if the breach notifications within the completely different areas are linked to the identical safety incident, BleepingComputer was instructed that their assertion applies to all notifications despatched to shoppers.
This incident follows related breaches disclosed by Tiffany & Co. in April and Home of Dior in Could, affecting prospects in South Korea.
When BleepingComputer requested if the Louis Vuitton and Dior breaches had been a part of the identical cyberattack, a LVMH spokesperson stated there was no further info they may share right now.
Nonetheless, sources have instructed BleepingComputer that the LVMH breaches are linked to an assault by the ShinyHunters extortion group, which gained entry and stole knowledge from a third-party vendor’s database.
This identical assault can be believed to be tied to a knowledge breach at Adidas disclosed in Could that additionally impacted prospects from South Korea and Turkey.
ShinyHunters is a prolific menace actor tied to quite a few knowledge theft campaigns, together with these in opposition to Salesforce and PowerSchool, in addition to the SnowFlake assaults, which impacted Santander, Ticketmaster, AT&T, Advance Auto Components, Neiman Marcus, and Cylance.
Final month, French police arrested 5 operators of the BreachForum cybercrime discussion board, which included ShinyHunters members, who had helped re-launch the hacking discussion board.
Nonetheless, it’s believed that different members of the group are nonetheless at massive, so different assaults could seem below that alias sooner or later.
BleepingComputer contacted Louis Vuitton to ask if ShinyHunters was behind its breach however didn’t obtain a response right now.
Whereas cloud assaults could also be rising extra subtle, attackers nonetheless succeed with surprisingly easy strategies.
Drawing from Wiz’s detections throughout 1000’s of organizations, this report reveals 8 key strategies utilized by cloud-fluent menace actors.
