Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
Luxury French fashion brand Dior is the latest major retailer to have disclosed a cyber attack on its systems, making it the first in the recent cyber crime wave not to be based in the UK.
Dior is a high-end, luxury fashion and accessory brand known for its handbags, fragrances, clothing and more. It is famous for redefining women’s fashion post World War II.
On 15 May, Dior disclosed that it had detected unauthorised activity on its systems and that it is dealing with a cyber incident.
“The House of Dior recently discovered that an unauthorised external party accessed some of the data we hold for our Dior Fashion and Accessories customers,” Dior said.
“We immediately took steps to contain this incident. The teams at Dior, supported by leading cyber security experts, continue to investigate and respond to the incident.”
Dior explicitly stated that the unauthorised third-party did not access any bank account or payment card information, as that data was stored in a different database.
“We are working to notify relevant regulators and customers in line with applicable law. The confidentiality and security of our customers’ data is an absolute priority for the House of Dior,” the company said.
Dior is yet to publicly disclose the nature of the incident, nor has a threat actor been identified or claimed responsibility for the incident.
However, according to media reports, data notices were sent to a number of regions around the globe, including South Korea and China, suggesting a global incident.
According to these notices, the cyber attack occurred on 7 May, leading to the personal data of customers being exfiltrated. This data includes full names, phone numbers, email addresses, postal addresses, gender information and purchase history.
Media reports in South Korea suggest that Dior is under fire for the delayed customer notification, while TechRadar suggests that the fashion brand could be facing legal action. Furthermore, Chinese media have said that some of Dior’s wealthiest customers may have been impacted.
The cyber attack on Dior closely follows a trio of cyber attacks on UK retailers, Marks & Spencer (M&S), Co-op and Harrods.
According to reports by the BBC, all three incidents have been claimed by the DragonForce ransomware gang, a claim that is backed by signs of their malware and more. Additionally, US cyber firm SentinelOne has also attributed the incidents to DragonForce.
“The DragonForce ransomware group has been targeting UK retailers in a series of coordinated attacks causing major service disruptions,” said Sentinel One.
“Prominent retailers such as Harrods, Marks & Spencer, and the Co-op have all reported ongoing incidents affecting payment systems, inventory, payroll and other critical business functions.”
Be the first to hear the latest developments in the cyber industry.
