- Kering Customer Data Train affected 7.4 million users over Gucci, Balenciaga and Alexander McQueen
- High consumers, some over $ 80,000, may have targeted scams due to leaked personal and purchase data
- Kering denies ransom conversations; confirms that no one stolen financial data and the authorities have been notified
The French Luxury Center, Kering recently suffered a data violation in which they lost sensitive information about millions of Balenciaga, Gucci and Alexander McQueen customers.
A group known as shiny hunters took responsibility for this attack.
This group is also responsible for violations of Google, Adidas, Louis Vuitton and many others -through Salesforce account -Compromis, which recently filled in news sites.
Targeting high consumers
The group claims to have stolen 7.4 million unique E -mail addresses, the BBC said in its report, suggesting that the number of victims could be the same. The publication was given a sample of the stolen data to confirm its authenticity and said that among the stolen information are people’s names, e -mail addresses, phone numbers, addresses and the total amount used in luxury stores around the world.
At the same time, Kering said that financial and payment information was not stolen. The company emphasized that relevant data protection and law enforcement agencies have been notified of the attack.
In his study, the BBC said it saw customers who spent more than $ 10,000 in these stores, as well as those who spent up to $ 86,000.
“This information is particularly concerned with victims, as it could lead to high consumers being targeted by secondary hacks and scams if the hacker decides to leak the information to other criminals,” it said.
Shinyhunters said the violation happened in April, and in the months after the attack has negotiated with the company to delete the files in exchange for a Bitcoin payment. Kering denied any communication with attackers, far less any negotiation of a ransom.
“In June, we identified that an unauthorized third party had temporary access to our systems and access to limited customer data from some of our houses. No financial information – such as bank account numbers, credit card information or state -issued identification numbers – was involved in the incident,” a Kering spokesman told the BBC.
Via BBC
