Cartier 2025 Data Breach
ObscureIQ Breach Intelligence
Low SeverityWebsite / service breach
Cartier Luxury Jeweler Breach (Salesforce, 2025): 45 Million Customer Email Addresses Exposed
Luxury jewelry and watch manufacturer.
Verified by ObscureIQ Intelligence
30/100Breach Risk Index
5Data Value
40Market Recency
206dSince Breach
Breach Intelligence Summary
Entity: Cartier · Actor: Scattered Lapsus$ Hunters · Sources: 2 references
Attack: Unknown
Profile: Company · Luxury goods manufacturing · Jewelry and watch brand · Global
Timeline: Breach (2025-10-10) · Indexed (Oct 03, 2025) · Year (2025)
Exposure: 45.4M records · 1 fields: Email Address
Status: Reported
Executive Summary
Cartier, the French luxury jewelry and watchmaker, was caught up in a broad attack campaign targeting Salesforce, the customer relationship management platform used by businesses worldwide. A threat group calling itself "Scattered LAPSUS$ Hunters" claimed responsibility and listed Cartier among roughly 39 organizations on its dark web leak site in October 2025. The group released a sample of stolen data on October 3, 2025, and announced plans to publish the full dataset on October 10, 2025. The breach affected an estimated 45.4 million customer records. The exposed data includes customer names, birthdates, country of residence, email addresses, and internal account identifiers. While financial details and physical addresses do not appear in the confirmed sample, the combination of real names, birthdates, and verified email addresses belonging to Cartier customers is particularly sensitive. Cartier's clientele are buyers of high-value jewelry and watches, making this list an attractive target for phishing, impersonation scams, and fraud schemes designed to exploit high-net-worth individuals. Cartier has not made detailed public statements about the scope of its exposure. No regulatory actions or formal breach notifications have been publicly confirmed as of the time of this report. Affected individuals should be alert to unsolicited emails purporting to be from Cartier or related luxury brands, treat any requests for account verification or payment information with caution, and be aware that their status as Cartier customers may itself be used as leverage in social engineering attempts.
ObscureIQ assessment: Exposure enables phishing, fraud, delivery impersonation, and targeting of high-net-worth customers. Jewelry and watch purchase data can also create physical-security concerns.
Breach Impact
Cartier was among the approximately 39 organizations listed on the Scattered LAPSUS$ Hunters dark web leak site in October 2025, with customer email addresses published as part of the Salesforce campaign. Security researchers noted that Cartier's customer email list — representing verified purchasers of high-value jewelry and watches — constitutes an especially sensitive targeting list for social engineering, theft-related fraud, and high-value phishing campaigns. Cartier has not made detailed public statements about the specific scope of its exposure in this campaign.
About Cartier
Cartier is a French luxury jewelry and watchmaker founded in Paris in 1847, widely regarded as one of the world's most prestigious luxury brands. The company designs and sells jewelry, watches, accessories, and leather goods through a global network of boutiques and authorized retailers. Cartier is a subsidiary of Richemont, the Swiss luxury conglomerate, and operates independently within that group alongside brands including Van Cleef & Arpels, IWC, and Jaeger-LeCoultre.
Why They Hold Your Data
Luxury jewelry and watch brands collect customer identity, contact details, addresses, purchase histories, service records, and payment-adjacent data across retail and after-sales operations.
Recent Developments
Cartier has continued operating within the Richemont group through a period of variable luxury goods demand, particularly in the key Chinese market. Richemont has reported solid performance in its jewelry maisons division — which includes Cartier — relative to broader luxury market softness. The brand has invested in digital retail and clienteling tools as part of its customer engagement strategy.
Data Points Exposed
1 verified field types
Email Address
Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.
Exploitation & Downstream Threats
Threat Activity:High
Primary downstream threats:
- Targeted phishing campaigns using exposed email addresses
Threat vectors:
- Phishing, credential stuffing & account takeover
Threat Actor: Scattered Lapsus$ Hunters
Scattered Lapsus$ Hunters
Unknown
Attribution and method are based on available breach intelligence. Reported attack vector: Unknown.
Recommended Actions
If you believe your information may be included:
Enable MFA Everywhere
Turn on multi-factor authentication on email first, then financial accounts.
Report & Recover
If you spot misuse, start an official recovery plan and report fraud.
Frequently Asked Questions
What happened in the Cartier breach?▾
Cartier, the French luxury jewelry and watchmaker, was caught up in a broad attack campaign targeting Salesforce, the customer relationship management platform used by businesses worldwide. A threat group calling itself "Scattered LAPSUS$ Hunters" claimed responsibility and listed Cartier among…
What data was exposed?▾
Verified fields include Email Address.
What should I do if I was affected?▾
Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.
Sources & References
Every claim on this page is traceable. This breach draws on:
Breach Index
ObscureIQ Intelligence
ObscureIQ proprietary analysis
Protect Yourself
Check If You're Affected
Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.
High-Risk? Get an Exposure Audit
Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.
Request Consultation