Chanel is the latest business to be hit by a growing wave of cyber attacks occurring in 2025.
The luxury beauty and fragrance house became aware of a security incident involving a Chanel Inc. database in the US, which is hosted by a third-party service provider.
The investigation indicated that there was “unauthorised access” to this database, a Chanel spokesperson told Cosmetics Business.
“There was no malware deployed to our systems, and our operations remain unaffected,” the spokesperson added.
“Upon detecting the issue, we immediately activated our incident response protocols and engaged leading cybersecurity experts to support our investigation.”
Based on Chanel’s initial investigation, the data obtained by the unauthorised external party contained limited details of a subset of individuals.
These were people who contacted Chanel’s client care centre in the US – specifically, name, email address, mailing address and phone number being obtained.
No other information was stored in this database, and the clients affected have been informed, according to Chanel.
Chanel’s spokesperson continued: “We continue to serve our clients without interruption.
“Data security and the privacy of our clients are of the utmost importance for Chanel, and we have dedicated significant resources to responding to this situation.”
Chanel is not the only business to be hit with a data breach, with Dior being among the recent high-profile names to be targeted by cyber criminals.
The luxury fashion house notified customers in China that it had suffered a data breach in a “malicious incident”.
The breach follows cyber incidents affecting British retailers Marks & Spencer (M&S), Co-op and Harrods.