Chanel Affected by Salesforce Data Breach Incident

As originally reported by WWD, Chanel detected a breach of its database hosted by a third party on 25 July. A spokesperson for Chanel stated that the investigation revealed the unauthorised external party accessed limited details of a subset of individuals who had contacted the client care centre in the United States. The compromised data included names, email addresses, mailing addresses, and phone numbers. Chanel confirmed that no other information was contained in the database and that the affected clients had been informed.

While Chanel did not disclose the number of individuals impacted, the breach was limited to customers in the United States. The company did not name the third party involved; however, BleepingComputer identified the breached database as a Salesforce instance. The publication also reported that the ShinyHunters hacking group was responsible for targeting these instances, having previously breached Allianz Life, Qantas, and Adidas. In response, Salesforce clarified that it had not been compromised and attributed the breach to social engineering techniques used by the threat actors, emphasising that the issues were not due to any known vulnerabilities in their platform. 

Categories: Data Breach, Cybersecurity, Customer Information 

Tags: Chanel, Breach, Database, Threat, Individuals, Information, Customers, Salesforce, Hacking, Group