Luxurious retailer LVMH says UK buyer knowledge was stolen in cyber assault
UK prospects of luxurious items model Louis Vuitton have been warned to be on their guard towards opportunist fraud makes an attempt after their knowledge was compromised in a cyber assault on the retailer.
In an e mail despatched to prospects, Louis Vuitton revealed that its IT techniques had been accessed on 2 July 2025 by an unauthorised third get together, who was capable of get hold of knowledge together with names, contact particulars and buying histories – all knowledge of use to cyber criminals. Louis Vuitton stated that financial institution and bank card particulars weren’t affected.
Pc Weekly understands Louis Vuitton is engaged with the UK authorities and has knowledgeable the Info Commissioner’s Workplace (ICO) of the incident.
That is the third incident disclosed by Louis Vuitton’s mother or father, French luxurious items home LVMH, in latest months.
Earlier in July, Louis Vuitton Korea additionally revealed it had fallen sufferer to a cyber intrusion, whereas two of the organisation’s different high-profile labels, Christian Dior Couture and Tiffany, reported an assault in Could.
The organisation additionally operates different iconic magnificence, trend and luxurious items manufacturers together with Bulgari, Givenchy, Fendi, Loewe, Marc Jacobs, Moët & Chandon, Sephora, and TAG Heuer.
A hyperlink to different assaults is feasible
The character of LVMH’s enterprise and the timing of the incidents will draw hypothesis of a hyperlink to the Scattered Spider hacking collective that attacked Marks & Spencer (M&S), Co-op Group and Harrods, and is probably behind an ongoing incident at Australian airline Qantas.
4 individuals accused of involvement within the M&S cyber assault, together with a 17-year-old boy, had been arrested and brought into custody within the UK final week.
The Scattered Spider gang makes a behavior of choosing one trade vertical at a time to assault, typically via specialist third-party suppliers with entry to techniques in a number of organisations.
Given different incidents occurred at LVMH broadly in keeping with the M&S assault, a hyperlink mustn’t essentially be dominated out at this stage, and it’s seemingly investigators shall be pursuing this angle.
“The sample of different LVMH regionals being compromised in comparable methods is likely to be indicative of a bigger downside,” stated Thomas Richards, infrastructure safety apply director at Black Duck.
“The breach won’t be totally contained, or these enterprise items use comparable know-how and techniques which have a vulnerability in it,” he added. “LVMH ought to conduct an organisation-wide safety evaluation to find out the basis trigger and implement advisable modifications to forestall additional breaches and guarantee uncompromised belief of their software program.”
Excessive-net-worth people
Immersive founder and chief innovation officer James Hadley stated the spate of cyber assaults on LVMH properties might show massively damaging to the group’s fame.
“Louis Vuitton’s core buyer base consists of high-net-worth people; subsequently, prospects would have anticipated additional precautions to be taken to guard their private info,” he stated.
“The non-public info of high-profile people is perceived as extra worthwhile by cyber criminals, and with the latest string of retail breaches, attackers might have felt emboldened.”
