Cyber Incident Victim: Chanel Korea
Date:
Aug 2021
Location:
South Korea
Summary
Chanel Korea experienced a cyber-attack compromising a customer database containing personal information such as names, birth dates, phone numbers, gender, and purchase histories from its cosmetics brand membership program. The company confirmed no leakage of IDs, passwords, or payment details, engaged a cybersecurity firm to investigate, and notified relevant Korean authorities. Affected customers were alerted via email and text, though the total number impacted remains undisclosed. The breach prompted public criticism, with some customers demanding compensation beyond the issued apology for the incident.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On August 8, 2021, Chanel Korea publicly disclosed a cybersecurity incident involving unauthorized access to a customer database, attributing the breach to a cyber-attack that occurred between August 5 and 6. The compromised system stored personal information of customers who had registered for the company's cosmetics brand membership program. Investigators determined that attackers exfiltrated data fields including customer names, birth dates, gender classifications, phone numbers, and detailed product purchase histories. Chanel Korea confirmed through forensic analysis that more sensitive authentication credentials—specifically customer IDs and passwords—along with payment information remained secure and were not accessed or leaked during the incident. The company initiated immediate containment procedures upon detection, though the specific method of initial intrusion or attacker identity remained undisclosed in public statements.
Chanel Korea issued formal apologies through its official website and direct communications, acknowledging the breach's impact on customer privacy while emphasizing ongoing collaboration with a third-party cybersecurity firm to assess attack vectors and systemic vulnerabilities. The organization reported the incident to Korea Internet & Security Agency (KISA) and cooperated with parallel investigations by Korea's Personal Information Protection Commission (PIPC). Affected customers received breach notifications via email and SMS, with instructions to contact designated channels for suspected misuse cases. While Chanel Korea asserted no evidence of secondary system compromises beyond the identified membership database, customer criticism emerged regarding insufficient remedial measures, with at least one affected individual publicly demanding financial compensation through media outlets like the Korea Times. The company maintained operational continuity throughout the response period without disclosing quantitative impact assessments regarding the number of compromised records or financial repercussions.