To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Search a title or topic

Over 20 million podcasts, powered by 

Player FM logo
Artwork

Tech News Tech News Daily Security Review
Content provided by Daily Security Review. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Daily Security Review or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

Similar to Daily Security Review

Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Daily Security Review « »
Dior Data Breach Exposes U.S. Customer Info in LVMH Vendor Attack

41:11
 
Play
Playing
Share
 

MP3Episode home
Manage episode 495773148 series 3645080
Content provided by Daily Security Review. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Daily Security Review or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

In this episode, we unpack the January 2025 data breach at Dior, the iconic luxury fashion house, which exposed sensitive personal information of U.S. customers—including names, addresses, and even Social Security and passport numbers. Although payment data remained secure, the incident's impact is substantial, both in terms of customer trust and corporate accountability.

What makes this breach especially troubling is that it wasn’t Dior’s systems that failed—it was a third-party service provider handling customer relationship management and marketing communications. The breach, discovered only in May, is now believed to be part of a larger cyberattack against LVMH, Dior’s parent company, which also affected Louis Vuitton. The ShinyHunters cyber extortion group is suspected of being behind the attack.

We explore how third-party vulnerabilities have become the Achilles' heel of even the most well-resourced brands. Drawing from FINRA, FTC, and cybersecurity expert analysis, we look at:

  • The rising frequency and scale of third-party breaches, including parallels to NotPetya, SolarWinds, and MOVEit;
  • The type of data compromised, and why attackers are now focusing more on customer identity data than payment credentials;
  • Dior's incident response, including customer notifications, legal compliance, and free identity theft protection;
  • The regulatory landscape, including SEC and GDPR mandates, and what companies are now legally required to do post-breach;
  • Effective preventative practices, from vendor risk management and contract due diligence to real-time monitoring and zero-trust principles.

With luxury brands increasingly targeted not for their wealth but for their rich customer profiles, this episode is a critical listen for business leaders, CISOs, and consumers alike. The Dior breach is more than just a fashion headline—it's a cautionary tale about the hidden risks in our digital supply chains.

#DiorDataBreach #Cybersecurity #LVMH #LuxuryRetailHack #ThirdPartyRisk #ShinyHunters #DataLeak #CustomerDataBreach #VendorBreach #IdentityTheft #SSNExposure #PrivacyBreach #DigitalSupplyChain #LouisVuittonHack #CRMbreach #IncidentResponse #CyberAttack #DataProtection #CyberThreats2025 #FashionIndustryCyberattack #BreachNotification #PIILeak #RegulatoryCompliance #FINRA #FTC #GDPR #ZeroTrustSecurity #CyberIncident #LuxuryBrandsUnderAttack

  continue reading

237 episodes

#Tech #News #Tech News #Daily Security Review
Artwork

Dior Data Breach Exposes U.S. Customer Info in LVMH Vendor Attack

Daily Security Review

published

Play Playing
iconShare
 
MP3Episode home
Manage episode 495773148 series 3645080
Content provided by Daily Security Review. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Daily Security Review or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

In this episode, we unpack the January 2025 data breach at Dior, the iconic luxury fashion house, which exposed sensitive personal information of U.S. customers—including names, addresses, and even Social Security and passport numbers. Although payment data remained secure, the incident's impact is substantial, both in terms of customer trust and corporate accountability.

What makes this breach especially troubling is that it wasn’t Dior’s systems that failed—it was a third-party service provider handling customer relationship management and marketing communications. The breach, discovered only in May, is now believed to be part of a larger cyberattack against LVMH, Dior’s parent company, which also affected Louis Vuitton. The ShinyHunters cyber extortion group is suspected of being behind the attack.

We explore how third-party vulnerabilities have become the Achilles' heel of even the most well-resourced brands. Drawing from FINRA, FTC, and cybersecurity expert analysis, we look at:

  • The rising frequency and scale of third-party breaches, including parallels to NotPetya, SolarWinds, and MOVEit;
  • The type of data compromised, and why attackers are now focusing more on customer identity data than payment credentials;
  • Dior's incident response, including customer notifications, legal compliance, and free identity theft protection;
  • The regulatory landscape, including SEC and GDPR mandates, and what companies are now legally required to do post-breach;
  • Effective preventative practices, from vendor risk management and contract due diligence to real-time monitoring and zero-trust principles.

With luxury brands increasingly targeted not for their wealth but for their rich customer profiles, this episode is a critical listen for business leaders, CISOs, and consumers alike. The Dior breach is more than just a fashion headline—it's a cautionary tale about the hidden risks in our digital supply chains.

#DiorDataBreach #Cybersecurity #LVMH #LuxuryRetailHack #ThirdPartyRisk #ShinyHunters #DataLeak #CustomerDataBreach #VendorBreach #IdentityTheft #SSNExposure #PrivacyBreach #DigitalSupplyChain #LouisVuittonHack #CRMbreach #IncidentResponse #CyberAttack #DataProtection #CyberThreats2025 #FashionIndustryCyberattack #BreachNotification #PIILeak #RegulatoryCompliance #FINRA #FTC #GDPR #ZeroTrustSecurity #CyberIncident #LuxuryBrandsUnderAttack

  continue reading

237 episodes

#Tech #News #Tech News #Daily Security Review

Усі епізоди

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Similar to Daily Security Review

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play
icon
Help/FAQ | Advertise with Us
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2025 | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox
Listen to this show while you explore
Play