Luxottica Eyewear Group discloses 2021 Attack Affecting 70M Customers
INCIDENT
Luxottica Group confirmed in May 2023 that one of its partners suffered a data breach in 2021. The breach exposed the personal information of 70 million customers. It was discovered after data was put up for sale on the dark web.
Andrea Draghetti, the leading researcher of the Italian cybersecurity firm D3Lab, analyzed the leaked data. She confirmed to BleepingComputer that it contains 305 million lines, 74.4 million unique email addresses, and 2.6 million unique domain email addresses.
Draghetti also determined the exfiltration date to be March 16th, 2021. This meant that the data likely originated from a previously undisclosed data breach.
Victims
Type of Malware
No Malware identified
Threat Source
No threat source identified
Industries
Impacts
IT Privacy