Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Personal Information Protection Commission (PIPC) imposed $25 million in fines and ordered Louis Vuitton to announce the penalty on penalties tied to inadequate security measures

Regulatory/Legal Action
First reported
Last updated
Happening score
H score 30
1 unique sources, 1 articles

Summary

Hide ▲

South Korea's Personal Information Protection Commission (PIPC) fined Louis Vuitton, Christian Dior Couture, and Tiffany $25 million for data-breach violations that exposed more than 5.5 million customers and reflected weak security controls.

Related Happenings

Vercel hit by network compromise

Incident
First: 19.04.2026 20:32 Last: 19.04.2026 20:32 Sources 1

About this happening: Vercel disclosed unauthorized access to certain internal systems and said a limited subset of customers was affected, while services remained operational during the investigation...

Latest development: 21.04.2026 00:01

Vercel disclosed that attackers used a compromised OAuth token tied to a Vercel employee's Google Workspace account and access to Context.ai to reach some Vercel environments and environment variables that were not marked as sensitive, and the company said a limited subset of customers had Vercel credentials compromised and were told to rotate them. Vercel said sensitive environment variables were not known to be accessed and that it was working with Mandiant, other security firms, Context.ai, and law enforcement while keeping services operational; Context separately said it had identified and stopped an AWS breach last month and later learned the actor likely also compromised OAuth tokens for some consumer users.

Open Happening

Nordstrom hit by network compromise

Incident
First: 18.03.2026 15:55 Last: 18.03.2026 15:55 Sources 1

About this happening: **Nordstrom** suffered an **email-system compromise** that let unauthorized **cryptocurrency scam** messages reach **customers** from a legitimate sender address, creating a direc...

Open Happening

DOJ conviction of Linwei Ding in Google trade secrets case

Law Enforcement
First: 30.01.2026 09:35 Last: 30.01.2026 09:35 Sources 1

About this happening: A federal jury **convicted Linwei Ding** of **economic espionage** and **theft of trade secrets**, escalating a U.S. **insider-threat** case tied to **Google's AI infrastructure**...

Open Happening

Seoul Metropolitan Police raid on Coupang breach records

Law Enforcement
First: 26.01.2026 15:00 Last: 26.01.2026 15:00 Sources 1

About this happening: **Seoul Metropolitan Police Agency** raided **Coupang’s headquarters in southern Seoul** to search for **internal documents and records related to the breach**, escalating the off...

Open Happening

Grubhub Salesforce and Zendesk data extortion leak

Data Leak
First: 15.01.2026 23:38 Last: 15.01.2026 23:38 Sources 1

About this happening: **Grubhub** is facing a **data leak extortion** attempt after stolen **Salesforce** and **Zendesk** data were tied to a **February 2025 breach** and a more recent compromise. The...

Open Happening

Timeline

  1. 13.02.2026 20:35 2 articles · 3mo ago

    PIPC fines Louis Vuitton, Dior, and Tiffany over SaaS data breaches

    Legal Policy Action Update

    South Korea's Personal Information Protection Commission (PIPC) imposed $25 million in fines on Louis Vuitton, Christian Dior Couture, and Tiffany after unauthorized access to a cloud-based customer management service exposed data for more than 5.5 million customers. The enforcement action cited inadequate access controls, lack of secure authentication, missing allow-lists and bulk data download restrictions, delayed breach discovery, and delayed notification, and it ordered Louis Vuitton to announce the penalty on its business website.

    Show sources
    Open in new tab