High-end jewelry retailer Tiffany and Company is notifying customers in the United States and Canada that their personal information was stolen by hackers.
According to the notification sent out to impacted individuals, a threat actor gained unauthorized access to Tiffany systems on or around May 12, 2025.
An investigation revealed that the attacker obtained information associated with Tiffany gift cards, including name, email address, postal address, phone number, sales data, gift card number, and PIN.
The luxury goods company informed the Maine Attorney General’s Office that more than 2,500 individuals are impacted by the data breach. It’s unclear if that number includes the affected Canadian customers.
Tiffany is part of the French luxury conglomerate LVMH, which also owns high-end brands like Louis Vuitton, Dior, and Givenchy. Several LVMH brands, including Louis Vuitton, Dior and Tiffany, were caught in a recent campaign conducted by the cybercrime group Scattered Spider, which targeted data from the Salesforce instances of many major companies.
It’s unclear if the Tiffany breach disclosed this week is related to the Salesforce attacks or if it’s a second, unrelated intrusion.
It’s worth noting that in most cases the companies hit by the Salesforce hacks mentioned in their disclosures that the incident involved a third-party system. Tiffany’s disclosure says the hackers accessed its own systems and there is no mention of a third-party service.
No known ransomware group has listed the luxury retailer on its leak website.
SecurityWeek has reached out to Tiffany for clarifications and will update this article if the company responds.
Related: Cartier Data Breach: Luxury Retailer Warns Customers That Personal Data Was Exposed
Related: TransUnion Data Breach Impacts 4.4 Million
Related: Victoria’s Secret Says It Will Postpone Earnings Report After Recent Security Breach
