Bleeping Computer reports:
South Korea has fined luxury fashion brands Louis Vuitton, Christian Dior Couture, and Tiffany $25 million for failing to implement adequate security measures, which facilitated unauthorized access and the exposure of data belonging to more than 5.5 million customers.
All three brands are part of the Louis Vuitton Moët Hennessy (LVMH) group and suffered data breaches after hackers gained access to their cloud-based customer management service (Salesforce).
The Personal Information Protection Commission (PIPC) in South Korea says that in the case of Louis Vuitton, an employee’s device was infected with malware, which led to compromising their software-as-a-service (SaaS) and leaking of data for 3.6 million customers.
Read more at BleepingComputer.
