Luxury Retailers Targeted in Supply Chain Data Breach

Severity: Medium (Score: 51.9)

Sources: Cybernews, Scworld

Summary

Lacoste, Ralph Lauren, Canada Goose, and Carter's are reportedly victims of a supply chain data breach, as claimed by a threat actor on an underground forum. The hacker shared sample data, including employee names, work emails, and potentially customer information, though some data was redacted. Cybernews researchers identified that the data structure was consistent across all brands, suggesting a shared vulnerability likely stemming from a third-party service provider. The attack may have exploited compromised employee accounts or system misconfigurations. This incident follows a previous breach involving Canada Goose, where over 600,000 records were allegedly stolen by a group known as ShinyHunters. The full extent of the breach remains unclear, and the brands have been contacted for confirmation. The leaked data poses risks of targeted phishing attacks against employees and customers. Key Points: • Four luxury retailers reportedly breached in a supply chain attack. • Data includes employee names, emails, and possibly customer information. • Attack likely exploited third-party vulnerabilities or compromised accounts.

Key Entities

• Data Breach (attack_type)
• Supply Chain Attack (attack_type)
• Alexander McQueen (company)
• Balenciaga (company)
• Canada Goose (company)
• Carter's (company)
• Carter’s (company)
• CWE-200 - Exposure of Sensitive Information (cwe)
• CWE-862 - Missing Authorization (cwe)
• Retail (industry)
• T1041 - Exfiltration Over C2 Channel (mitre_attack)
• T1078 - Valid Accounts (mitre_attack)
• T1195 - Supply Chain Compromise (mitre_attack)
• SQL Server (platform)
• World Leaks (ransomware_group)