Cartier confirms data breach, client information compromised

French luxury fashion brand Cartier said it suffered a significant data security incident that compromised sensitive personal data of its clients.

 

In a data security incident notice sent to its customers, Cartier said that it an unauthorised threat actor gained access to its internal network and exfiltrated some clients’ data. The company immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident.

 

The fashion giant activated its incident response protocol, contained the incident and notified relevant law enforcement authorities about the same.

 

“Based on the investigation, we determined that this incident may have affected some of your information, specifically your name, e-mail address and country. 

 

“The affected information did not include any passwords, credit card details or other banking information,” Cartier said in its notice.

 

“Given the nature of the data, we recommend that you remain alert for any unsolicited communications or any other suspicious correspondence,” the company added.

 

 

Cartier has not yet disclosed who was behind the intrusion or how its network was compromised. However, the company has assured clients that it will share further details as they become available.

 

This incident adds to a rising trend of security breaches targeting consumer-focused companies. Last month, global sportswear giant Adidas said it suffered a data security incident after an unauthorised party accessed the internal network of one of its customer service partners, compromising certain customer information.

 

Christian Dior and Tiffany & Co, both owned by LVMH, disclosed data security incidents affecting its South Korean customers. In both incidents, the threat actors stole sensitive customer data including names, gender, phone numbers, email addresses, mailing addresses, purchase amounts, and shopping preferences, however, threat actors did not access financial data such as bank account numbers, IBANs, or credit card information.

 

Last week, global lingerie, clothing and beauty retailer, Victoria’s Secret also reported a security breach that forced the company to take its official website offline.

 

The company added that its Victoria’s Secret and PINK stores remain open and fully operational, continuing to serve customers despite the incident.