Dior Fashion House

French fashion house Christian Dior informed some of its customers via text message on May 12, 2025, about a databreach involving unauthorized access to certain customer information.

French fashion house Christian Dior informed some of its customers via text message Monday night of a databreach involving unauthorized access to a portion of its customer information.

Per the message, Dior discovered on May 7 that external parties without authorization had accessed certain customer data held by the brand. The leaked information includes customers’ names, gender, phone numbers, email addresses, mailing addresses, purchase amounts, shopping preferences, and other user data collected by the brand.

The message emphasized that no financial information – such as bank account details, IBANs, or credit card data – was contained in the compromised database.

a Dior customer service representative confirmed the incident, stating, “We recently identified a security breach that resulted in unauthorized access to certain data we hold, including customer information. Upon discovering the issue, we immediately took steps to contain it.”

The representative added that the incident is still under investigation and that no further details are available at this stage. “If there are any developments in the investigation, customers with inquiries will be updated directly via phone,” he said.

Marks & Spencer – United Kingdom

Retail firm Marks & Spencer has revealed that customer personal data has been taken by hackers, after the company was hit by a damaging cyber attack.

Personal data that could have been accessed includes names, email addresses, postal addresses and dates of birth, according to M&S, but the firm stressed the data does not include payment or card details, or account passwords and is not believed to have been shared online.

The high street chain did not say how many shoppers had been affected, but has emailed all website customers to alert them about the databreach. It had 9.4 million active online customers in the year to March 30, according to its last full-year results.

The group has not been able to take any orders through its website or app since April 25 as it tries to resolve the problem, although all stores remain open.

GlobalIX

GlobalX, an American airline involved in the Trump administration’s deportation of illegal aliens from the US into El Salvador, Venezuela, and elsewhere, confirmed suffering a cyberattack that infiltrated some of its business applications last week.

Incident response protocols were promptly implemented following the discovery of the intrusion, which is also being contained, mitigated, and probed alongside external cybersecurity experts, said GlobalX in a filing with the Securities and Exchange Commission.

“Given the recency of the incident, our investigation and response are ongoing, and the full scope, nature, and potential ultimate impact on the company are not yet known. The company currently believes that none of its operations have been disrupted or negatively impacted by this incident,” noted GlobalX.

Masimo Corp.

Masimo Corp. is investigating a cyberattack that has impacted its manufacturing facilities. The Irvine, California–based maker of patient monitoring devices said it discovered unauthorized activity on its network on April 27.

The attack has temporarily interfered with its ability to process, fulfill and ship customer orders in a timely manner. CEO Katie Szyman said in a quarterly earnings call that the incident disrupted the company’s website and several of its computer systems, but she added that, as of now, the incident would not change the company’s operations.

However, the company cautioned in the SEC filing that it has not yet determined the “full scope, nature and impact” of the incident.

Andy Frain Services – Aurora, Illinois

Andy Frain Services, a physical security firm based in Illinois, had information from over 100,000 individuals stolen following a data breach in October, which the Black Basta ransomware alleged resulted in the compromise of 750 GB of files.

Additional details regarding the nature of the incident, as well as the types of data that had been pilfered, were not detailed by Andy Frain in a breach notification letter sent to the Office of the Maine Attorney General, which noted all affected individuals’ eligibility to up to two years of complimentary credit monitoring and identity restoration services.

However, Black Basta said in November that it was able to exfiltrate files from the accounting, legal, and human resources departments of the company, which has been offering security services to airports, commercial businesses, transportation industry entities, event venues, and sports arenas, among others.

For Effected Parties of Andy Frain Services
If you have received a recent notice of the data breach and have experienced recent concerning activity, it is possible that your personal information was compromised and is being offered for sale on the dark web.

Wolf Haldenstein Adler Freeman & Herz LLP (“Wolf Haldenstein”), a preeminent national consumer rights law Haldenstein is investigating claims on behalf of people who have been impacted by the Andy Frain Services (“Andy Frain”) data breach

If you wish to discuss this data breach incident, or if you have any questions regarding your rights and interests in this matter, please immediately contact Wolf Haldenstein by telephone at (800) 575-0735, via e-mail at gstone@whafh.com.