Louis Vuitton customers in the UK, South Korea, Turkey and possibly other countries are being notified of a data breach.
Customers of the French luxury retailer Louis Vuitton are being notified of a data breach that appears to impact people in several countries.
Data breach notifications have been published on Louis Vuitton websites or privately sent out for customers in the United Kingdom, South Korea, and Turkey. Other countries may be impacted as well.
The cyberattack resulted in the theft of information such as name, contact information, and other data shared by customers. Passwords, payment card information and other financial details have not been obtained by the hackers, Louis Vuitton said.
The incidents reported in each country appear to be connected, based on the type of information that has been compromised and the date when the breach was detected, July 2.
Press releases issued in Korea and Turkey indicate that the hackers gained initial access nearly one month before the intrusion was detected.
In Turkey, the company reported that the breach impacted nearly 143,000 residents. The same statement reveals that the incident involved a compromised account related to a third-party service provider.
SecurityWeek has reached out to Louis Vuitton parent LVMH for additional information — including the number of affected countries and customers — and will update this article if the company responds.
It’s unclear if the company has been targeted in a ransomware attack. No known cybercrime group appears to have taken credit for the attack at the time of writing.
Louis Vuitton is not the only luxury retailer to have suffered a data breach in recent months. Cartier informed customers last month that their personal information was compromised following unauthorized access to its systems.
Korea’s Coupang says data breach exposed nearly 34M customers’ personal information
Have I Been Pwned: SoundCloud data breach impacts 29.8 million accounts
Logitech confirms data breach after Clop extortion attack