Hackers Steal Customer Data from Gucci, Balenciaga, and Alexander McQueen in Kering Breach

Hackers have stolen personal data belonging to potentially millions of customers of Gucci, Balenciaga, and Alexander McQueen, following a cyberattack on their French parent company Kering, according to reports by the BBC, Reuters, and The Guardian on September 15, 2025.

The attack is part of a growing trend of cyber threats against high-end fashion houses in 2025. Earlier this year, similar breaches were reported at Cartier, part of the Richemont Group, as well as luxury brands under LVMH (“Moët Hennessy Louis Vuitton”). In July, regulators confirmed an investigation into a data leak impacting around 419,000 Louis Vuitton customers.

Kering confirmed the incident in an official statement, without specifying which brands were affected. The company revealed that it detected “unauthorized third-party access” to its systems in June, allowing hackers to temporarily obtain customer data.

According to reports, the stolen data includes: Customer names, Email addresses, Phone numbers, Total amounts spent in stores.

Financial information, such as credit card or banking details, was not compromised.

This latest breach highlights how luxury brands have increasingly become prime targets for cybercriminals. Groups like ShinyHunters — linked by some cybersecurity experts to the attack — are known for targeting high-profile companies and selling stolen data on dark web marketplaces.

As investigations continue, Kering says it has strengthened its security measures and is cooperating with regulators to minimize the impact on affected customers.

Sources & References: reuters, theguardian, thetimes, computerweekly