"Kering, the France-based parent of luxury brands such as Alexander McQueen, Balenciaga and Gucci, has admitted the personal data of customers has been compromised following an apparent ransomware attack that is being linked to the ShinyHunters hacking collective through a wide-ranging compromise of various Salesforce instances. The purloined data is thought to comprise personal information including names and contact details, and information on customer spending history. The firm said that no financial or credit card data was affected."
"A spokesperson for the organisation told the BBC that the compromise was uncovered in June. They said: "An unauthorised third party gained temporary access to our systems and accessed limited customer data from some of our Houses. No financial information ... or government-issued identification numbers, was involved in the incident." The BBC additionally reported that Kering says it has refused to pay a ransom."
Kering confirmed that personal customer data was accessed after an apparent ransomware attack linked to the ShinyHunters collective via a widespread compromise of Salesforce instances. Stolen information likely includes names, contact details and customer spending histories, while financial and government ID data were not affected. The breach was uncovered in June though attackers reportedly breached defenses in April; Kering declined to pay a ransom, but communications suggest negotiations occurred or data may have been sold. Security experts warn customer-spend data enables prioritization for targeted social engineering, identity fraud, and continues a trend of attacks on luxury brands including LVMH.
Read at ComputerWeekly.com
Unable to calculate read time
Collection
[
|
...
]