Louis Vuitton Korea Customer Data Compromised in Cyberattack
Louis Vuitton Korea experienced a cyberattack in 2025, similar to an incident affecting its UK operations, where customer personal data was exfiltrated. The company began notifying affected customers in South Korea as part of a staged disclosure process for a single, widespread incident impacting multiple LVMH brands. No payment data was compromised.
Signal context
First seen: Jul 1, 2025
Last updated: Jun 20, 2026
Status: Public signal
Key points
- Customer personal data compromised in 2025.
- Part of a single incident affecting multiple LVMH brands globally.
- Notifications began in South Korea.
Signal analysis
BetaThis analysis groups the signal by industry, likely incident action and impacted security area. It helps compare this signal with other published signals without treating the labels as final determinations.
Sector: Finance and Insurance
Likely country: 🇬🇧 GB
inferred from signal text
Watch internet-facing systems, credential abuse and exploit activity.
- Source type: outside the affected organization
Impact area: Confidentiality
Likely asset: User or customer data
- 4 signals in the same sector
- 31 signals with the same likely impact area
- 1 signal linked to this organization/domain
External sources
Louis Vuitton says UK customer data stolen in cyber-attack | Cybercrime - The Guardianhttps://www.theguardian.com/technology/2025/jul/11/louis-vuitton-uk-customer-data-stolen-cyber-attackPublic source from theguardian.com.
Related signals
Grouped by why the signal is relevant.
American Express Insider Data Breach Reported
American Express was involved in an insider data breach where an employee accessed the personal financial information of an individual. An investigation by the Australian Privacy Commissioner found the company breached privacy laws by failing to implement adequate restrictions on staff access to customer accounts.
French National Bank Account Registry (FICOBA) Data Breach
The Fichier National des Comptes Bancaires et Assimilés (FICOBA), France's national bank account registry, experienced a data breach in late January 2026, potentially compromising 1.2 million accounts.
Cl0p Ransomware Group Exploits Oracle E-Business Suite Zero-Day
The Cl0p ransomware group launched a large-scale extortion campaign by exploiting a zero-day vulnerability (possibly CVE-2025-61882) in Oracle's E-Business Suite (EBS). This led to critical data breaches for dozens of large corporations, with over 100 companies allegedly impacted. The exploitation activity was observed as early as August 9, 2025, weeks before a patch was available, and suspicious activity dated back to July 10, 2025. The threat actors exfiltrated a significant amount of data from impacted organizations and sent high-volume emails to executives demanding payment.
Paywall Bypass Vulnerability
Tweakers.net has identified a vulnerability that allows for the bypass of its paywall. This issue is listed as a 'Known issue' within their bug bounty program, indicating that the company is aware of the flaw and is seeking ethical hackers to report findings related to it. A successful bypass could allow unauthorized access to premium content.
Oracle Affected by FortiBleed Campaign
Oracle was identified as one of over 22,000 corporate domains affected by the FortiBleed campaign. A Russian-speaking criminal group compromised Fortinet firewall and VPN devices globally, exfiltrating credentials and potentially gaining full network access.
Horizon Family Medical Group Data Breach
Reports emerged on June 18, 2026, of a possible data breach at Horizon Family Medical Group, a medical provider in New York's Hudson Valley region. Threat actor Incransom claimed to have stolen 7 TB of data, including medical information such as diagnoses, prescriptions, treatments, and lab results.