“The House of Dior recently discovered that an unauthorized external party accessed some of the data we hold for our Dior Fashion and Accessories customers,” stated the spokesperson. House of Dior, the French luxury fashion brand commonly referred to as Dior, has disclosed a cybersecurity incident that has exposed customer information. Dior recommends that customers remain vigilant for phishing attempts that request their personal information, and contact them immediately to report cases of brand impersonation. A spokesperson for the firm told BleepingComputer that the incident impacts Dior Fashion and Accessories customers. Dior clarified to BleepingComputer that the incident did not expose account passwords or payment card information, as these were stored in a different database that remained unaffected. Meanwhile, Korean media report that Dior faces legal scrutiny for failing to notify all the applicable authorities in the country about the data breach. Although Dior did not specify the number of customers and the regions impacted, there is a notification confirming its South Korean website being affected. Bill Toulas Bill Toulas is a tech writer and infosec news reporter with over a decade of experience working on various online publications, covering open-source, Linux, malware, data breach incidents, and hacks. There also some reports about Chinese customers receiving data breach notifications from the fashion house. However, in that case, only contact information, purchase data, and preferences customers shared with the brand are flagged as potentially exposed. “The confidentiality and security of our customers’ data is an absolute priority for the House of Dior. The notice posted on Dior’s Korean shop also sets the breach date to May 7, 2025, suggesting a common cybersecurity incident that had an international impact.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Wed, 14 May 2025 13:40:04 +0000