Fashion giant Dior has disclosed a recent cyberattack. The company warned of a data breach. Customer information from Dior Fashion and Accessories was exposed. Cybersecurity experts are now investigating the incident’s full scope. A Dior spokesperson said an unauthorized party accessed some data. Dior immediately took steps to contain this security incident. Teams continue to investigate with external cybersecurity experts.
Dior clarified that certain sensitive data was not exposed.
This includes account passwords. Payment card information also remained secure. This information was stored in a different, unaffected database. Dior is working to notify all relevant regulators. They are also notifying customers in line with applicable laws. Dior stated that customer data confidentiality is a top priority. The company sincerely regrets any concern caused to customers.
Dior did not specify the number of affected customers. All impacted regions were not initially listed. However, its South Korean website was confirmed affected. Reports indicate Chinese customers also received breach notifications. Notices suggest the incident was discovered on May 7, 2025. Exposed data includes names, gender, phone numbers, and emails. Postal addresses and purchase histories were also compromised.
The Korean notice flags similar data exposure for that region.
Meanwhile, Korean media report potential legal issues for Dior. This is for failing to notify all Korean authorities properly. Dior advises customers to watch for phishing attempts. These scams might request personal information. Customers should report any brand impersonation to Dior immediately. Full details on affected customer numbers remain undisclosed. The complete list of impacted countries is also not yet public.
Reference: