Cartier Data Breach: Luxury Retailer Warns Customers that Personal Data Was Exposed

Luxury brand Cartier disclosed a data breach on Monday in which an unauthorized party gained access to its systems and obtained some client information.

According to a notification sent to affected clients obtained by SecurityWeek, the compromised data includes names, email addresses, and countries of residence. Cartier emphasized that no passwords, credit card numbers, or banking information were involved in the breach.

Founded in 1847, Cartier is known for its pricey jewelry, watches & accessories. The company did not say how many customers were impacted or when the incident was detected.

“We have informed the relevant authorities and are working with external cybersecurity specialists to investigate the incident and strengthen our security posture,” Cartier stated in the notice.

Just last week, Lingerie retailer Victoria’s Secret experienced a cyberattack that resulted in its website being taken offline. Sportswear giant Adidas also disclosed a cyber incident last week after hackers accessed a “third-party customer service provider” and stole the contact information of customers who contacted the help desk in the past.

Although Cartier did not disclose details about the method or origin of the breach, the incident comes to light only weeks after UK retailers Co-op, Harrods, and Marks & Spencer (M&S) were targeted by the DragonForce ransomware group. The attack on M&S resulted in data theft and could cost the retailer roughly $400 million.

Paris, France-based Cartier advised clients to remain vigilant for unsolicited or suspicious communications. “We recommend that you remain alert for any unsolicited communications or any other suspicious correspondence,” the company cautioned.

SecurityWeek has contacted Cartier to get additional details and will update this if a response is received.