284/68 Wednesday, August 6, 2025
French luxury fashion brand Chanel is the latest victim in an ongoing data theft campaign targeting organizations using Salesforce systems. The breach was discovered on July 25, 2025, when unauthorized access was detected in Chanel’s customer database hosted on a third-party provider. The company later confirmed that the incident involved Salesforce, a widely used CRM (Customer Relationship Management) platform among large enterprises.
Chanel clarified that the breach affected only customers in the United States, exposing personal data such as names, email addresses, shipping addresses, and phone numbers of those who had contacted Chanel’s customer service. No other sensitive data was compromised, and impacted customers have already been notified. Meanwhile, BleepingComputer reported that the attack is part of a broader campaign targeting Salesforce environments, allegedly carried out by the ShinyHunters hacking group. The group reportedly used vishing (voice phishing) tactics to trick employees into granting permissions to malicious OAuth apps connected to their organization’s Salesforce portals.
Salesforce has confirmed that its platform was not breached, and emphasized that the incidents stem from social engineering attacks directed at its customers. The company advised all organizations to enable Multi-Factor Authentication (MFA) and carefully manage third-party app permissions. Other notable companies affected by the same campaign include Adidas, Qantas, Allianz Life, and several LVMH brands such as Louis Vuitton, Dior, and Tiffany & Co. Although no stolen data has yet been leaked publicly, attackers are reportedly leveraging the compromised data in email-based phishing campaigns.
