- The Cartier diamond company informs customers of a data violation
- Names, emails and countries of origin have been exposed
- Fortunately, passwords and payment data remain secure
The French luxury brand Cartier has warned customers some of their sensitive personal information has been stolen in a recent data violation.
In a letter of notification of data violation sent to concerned customers (who also circulate on social networks), Cartier said that an unauthorized third party had acquired temporary access to its systems and exfiltrated customer data.
“Based on the survey, we have determined that this incident may have affected some of your information, in particular your name, email address and country,” said the notification. “The affected information did not include any password, the details of the credit card or other banking information.”
Target the fashion industry
Although this is good news that passwords and banking data were not included, email names and addresses can sometimes be sufficient to make convincing phishing attacks, through which hackers can steal from connection identification, payment information, etc.
Cartier did not say who were the threat actors, or if data entry was an isolated incident or part of a wider ransomware attack. Nor do we know how many people are affected.
The company has confirmed that the incident is now contained and that it “has further improved the protection of our systems and data” to prevent similar incidents from reproducing. He has not detailed what these improvements involve.
“Given the nature of the data, we recommend that you remain vigilant for any unsolicited communication or any other suspicious correspondence,” concluded the letter. Police were informed and Cartier hired third -party security experts to further approach the attack.
Cartier is the next one in an expansion list of luxury and fashion brands that have recently been victims of cyber attacks.
Less than a month ago, Victoria’s Secret and Dior confirmed an attack in which names, gender information, telephone numbers, email addresses, postal addresses and purchasing history were all taken.
Via Bleeping Compompute
