An unidentified user has claimed to have the sales data of the luxury eyewear brand Luxottica.
On the breach forum, The Cyber Express discovered a post claiming to have full names, email addresses, phone numbers, mailing addresses, dates of birth, etc., belonging to the brand. The post further stated that the group got hold of the data after the data breach earlier in November 2022.
Luxottica data breach
“The breach happened due to a 3rd party exposing the data via a publicly accessible storage container, which contained 500+ parquet files,” read the post shared on the breach forum. Parquet offers data storage services for a large volume of complex data.
The post claimed to have over 149 GB of data which is free to download for readers, adding that the data was around 59 GB when compressed.
The debacle facing Luxottica
Luxottica has been in the news for multiple data breaches. The Cyber Express had earlier reported the Luxottica data breach on November 2022 where a group called Sin attempted to auction the client data it ‘bought legally’.
Previously, in 2020 also the Italian eyewear giant suffered a cyberattack at the hands of the Nefilim ransomware group where 829,454 users were impacted.
EssilorLuxottica SA was formed with a partnership between the lens-making company Essilor and Luxottica. The French maker of RayBan, which is sold by Essilor, lost nearly $272 million due to fraudulent transactions that the company claimed were the responsibility of the bank to detect and stop.
EssilorLuxottica SA filed a case against JPMorgan on several charges, including breach of contract and negligence. While most parts of the lost sum were recovered by the plaintiff, it accused the bank of the remaining $100 million that it could not recover.
Son of a street vegetable seller, Leonardo Del Vecchio founded Luxottica at the age of 25 in 1961. The brand, which later acquired Ray-Ban in 1999, has over 80,000 employees and 9,000 retail stores. At 87, Leonardo Del Vecchio died in July 2022.