Kering cyber attack: 7.4 million customers targeted

Our investigation reveals that in June 2025, the Kering luxury group suffered a massive cyberattack, affecting the Gucci, Balenciaga and Alexander McQueen houses. According to insider sources, nearly 7.4 million e-mail addresses and personal data linked to customer spending were exfiltrated. This leak, revealed in September by hackers Shiny Hunters, exposes the luxury goods sector to a growing cybersecurity threat.

A violation with unprecedented consequences

In June 2025, unauthorized access allowed a third party to temporarily consult Kering‘s IT systems. The information compromised included names, addresses, telephone numbers and, above all, the total amount of customer expenditure. While no bank details or social security numbers were affected, the marketing and strategic value of this information is considerable. In Paris, this revelation sent shockwaves through luxury circles.

The French and European authorities were immediately notified. In compliance with the RGPD, Kering notified its customers. This responsiveness demonstrates regulatory vigilance, but also fuels the debate on the transparency of the major houses. In a sector where the image of trust is paramount, every flaw can have a major reputational impact.

The hackers behind the attack

The Shiny Hunters group, already known for other massive data thefts, claimed responsibility for the intrusion. They claim to hold the detailed files of millions of customers, valuable data that can be used for both targeted phishing and blackmail campaigns. Their activity highlights a worrying specialization in premium customers and the luxury sector.

According to their own statements relayed by the BBC, the exfiltrated files include precisely 7.4 million unique emails, some accompanied by data on purchasing behavior. For cybercriminals, it’s a treasure trove for profiling high-end customers. For brands, it’s a wake-up call about technological vulnerabilities.

An entire sector under pressure

The Kering case comes in a sequence in which Dior, Louis Vuitton and Cartier also suffered intrusions in 2025. The luxury sector now appears to be a prime target, with hackers finding in it the combination of a wealthy clientele and global brands whose data is worth a great deal. This wave is resonating even in Parisian cybersecurity departments, which are sounding the alarm.

Affected customers, mainly in Europe, have expressed concern about the potential fraudulent use of their data. For many, the theft of the amount of their purchases is the most worrying element, as it enables large-scale buyers to be precisely targeted. The cybersecurity measures urgently announced by Kering are not enough to reassure some consumers.

“The intrusion was quickly identified and appropriate measures were taken to secure the systems concerned” – Kering spokesperson, September 2025

The contrast between Kering’s official communication and the data claimed by Shiny Hunters maintains a climate of doubt. The lack of technical details about the flaw exploited reinforces this feeling. Cybersecurity experts insist on the importance of sharing information to prevent similar attacks.

The group’s response and its limits

Kering would like to point out that no sensitive financial data has been exposed, which is reassuring for its loyal customers. The Group has commissioned specialist firms to strengthen its digital defenses from the summer onwards. Several internal sources mention increased investment in network infrastructure and 24/7 surveillance.

For industry professionals, this cyber-attack marks a turning point in the way the luxury goods business must approach cybersecurity. Any breach, however limited in appearance, can shatter trust and impact billions in brand image. The Kering affair has prompted strategic discussions in all the major houses.

“Attacks on the luxury goods industry target strategic data rather than financial aspects: profiling, spending and purchasing behavior” – Nicolas Arpagian, cybersecurity expert

What’s the outlook for 2025?

In the wake of the attack, Kering reinforced its technical measures, as well as its crisis communication system. Since September 2025, the Group has stepped up exchanges with its customers and strengthened its awareness campaigns. Nevertheless, the spectre of class actions and legal proceedings remains, especially in the United States and Europe.

For international experts, this attack sets a precedent. It shows that data protection in the luxury goods sector must reach the same level as that of banks. Parisian and global brands are considering pooling certain measures to counter cyber threats that are likely to become systemic in the months ahead.

In this context, it is crucial for customers to redouble their vigilance in the face of phishing attempts or fraudulent solicitations. The luxury goods sector will also have to invest in new security solutions, some of which have their origins in defense or aeronautics. The link between digital protection and prestige is likely to become inseparable this year.

This cyber-attack comes at a time when Paris is becoming a global showcase not only for fashion, but also for connected luxury. The pressure on groups like Kering is therefore twofold: to protect their image of excellence and to secure their most strategic data.