French luxury giant Dior has confirmed a data breach after experiencing a cyber attack that resulted in unauthorized access to its IT systems.
“The House of Dior recently discovered that an unauthorised external party accessed some of the customer data we hold,” the company stated.
Dior responded by taking steps to contain the incidents, launching an investigation with third-party cyber experts, and notifying relevant authorities.
“We immediately took steps to contain this incident. The teams at Dior, supported by leading cybersecurity experts, continue to investigate and respond to the incident. We are notifying all the relevant regulatory authorities,” Dior said.
Dior cyber attack resulted in a data breach
Preliminary results of the ongoing investigation have determined that the Dior cyber attack resulted in data exfiltration. While the exact nature of the exposed data remains unclear, it includes “contact information, purchase data, and preference data.”
Other details likely exposed include the victim’s full name, gender, contact information such as email address, phone number, and postal address, and purchase history.
When exposed, this information could allow hackers to craft compelling phishing scams that could expose more sensitive data, such as credit card information.
Subsequently, the company has advised customers to remain vigilant for potential phishing attacks and report any suspected brand impersonation.
“Armed with purchase history and detailed personal info, attackers can create phishing emails that look like they came straight from Dior’s marketing department,” warned Marijus Briedis, Chief Technology Officer at NordVPN. “That level of realism makes scams nearly indistinguishable from the real thing.”
Nonetheless, the data breach did not expose account login credentials or customer financial information such as bank details, IBAN, or credit card details.
“When a luxury brand like Dior is breached, it’s not just data that’s compromised, it’s trust,” Briedis added. “The exposure of customer profiles, preferences, and contact information may seem non-financial, but in the wrong hands, it becomes a blueprint for exploitation. It’s a mistake to assume that only financial information matters in a breach. In reality, knowing what someone buys, where they live, and how they shop is just as dangerous. For cybercriminals, Dior’s customer data is a goldmine for psychological targeting.”
Meanwhile, the French luxury giant is in the process of notifying impacted individuals but has not confirmed regions or countries affected, suggesting the data breach could be worldwide.
While customers in Asia have already received data breach notifications, the total number of affected individuals remains unknown. Dior has also yet to disclose the nature of the cyber attack, including whether it experienced disruptions or ransomware was involved.
Nonetheless, the company has asserted its commitment to the confidentiality and security of customer data and apologized for the data breach.
“The confidentiality and security of our customer data is an absolute priority for the House of Dior. We deeply regret any concern or inconvenience this matter may cause our customers,” said Dior.
So far, no cybercrime group has publicly taken responsibility for the Dior cyber attack, and the company has not received any ransom demands.
Late reporting according to Korea’s data breach laws
Meanwhile, Dior faces regulatory scrutiny in Korea for allegedly failing to comply with the country’s data breach laws. While the luxury giant notified Korea’s Personal Information Protection Commission (PIPC) of the data breach, it allegedly failed to report the cyber attack to the Korea Internet & Security Agency (KISA).
Under Korea’s law, companies must report cyber incidents that affect Koreans immediately, regardless of whether they occurred outside the country. Failure to comply with data breach reporting laws could result in fines of up to ₩30 million ($21,180).
Similarly, South Korea’s telecom giant SK Telecom, which also recently suffered a cyber attack, is under scrutiny for reporting the incident two days late.
“This breach is a reminder of why organizations must adopt a proactive security strategy,” noted Aditya Sood, VP of Security Engineering and AI Strategy at Aryaka. “This should include continuous monitoring, threat detection, access control, and resilience planning to reduce the attack surface. By integrating incident response plans, backup strategies, and red team/blue team exercises, businesses can ensure rapid containment and recovery from potential threats while continuously refining their defenses against evolving cyber risks.”
Meanwhile, European retailers have recently become frequent targets of cyberattacks. Between April and May 2025, UK retailers Marks & Spencer, Harrods, and the Co-op reported cyber attacks that resulted in data exposure.
