Customer data is the new gold – and hackers are already digging

Customer data is the new gold – and hackers are already digging

A wave of attacks targeting large customer databases is sweeping across industry after industry. Kering, owner of brands such as Gucci and Balenciaga, is one case where a hacker group gained access to customer data connected to millions of individuals. The incident illustrates a growing trend where cybercriminals focus on stealing customer data rather than only demanding ransom payments.

The Kering case is far from unique. The intrusion occurred in June 2025, when the hacker group Shiny Hunters accessed names, email addresses, phone numbers, home addresses, and even records of how much customers had spent in stores. The case has resurfaced after the group recently began spreading parts of the material online. It highlights a broader trend where data theft is becoming an increasingly common method. Ransomware – in which systems are encrypted and ransom is demanded – remains one of the most prevalent global threats. But in parallel, we are seeing attackers focus more and more on stealing and selling consumer data, which today is just as valuable. When large customer databases become a commodity on the dark web, both companies and individuals suffer the consequences.

How the attacks typically unfold

Most intrusions don’t begin with advanced code, but with people. An employee is tricked into clicking a link in an email or handing over login details. Through a combination of phishing and social engineering, attackers gain access to company systems, often via SSO portals or cloud services.

Once inside, they can remain undetected for weeks or months, mapping the environment and quietly exfiltrating vast amounts of data before anyone notices. This attack pattern is on the rise – where the goal is not always to lock systems, but to siphon off customer databases that can later be sold.

Risks for consumers

For consumers, this development brings several risks:

  • Identity theft: Attackers can use personal data to open accounts or take out loans in someone else’s name.
  • Targeted fraud: When attackers know what you have purchased or where you live, scam emails and SMS messages become far more convincing.
  • Long-term consequences: Data that has leaked once can be reused in new attacks years down the line.

This means the consequences of a data breach can be both immediate and prolonged – long after the company itself has closed the incident.

Why companies must act proactively

For many organizations, the focus still lies on incident plans and the ability to quickly restore operations after a breach. That is important – but not enough when attackers are systematically targeting customer data. By the time the intrusion is discovered, enormous amounts of information have often already been extracted.

That is why security today must be treated as a fundamental business principle, not as an afterthought. It must be embedded in everything from system architecture and access controls to employee training and board-level reporting. In short: preventive measures make the difference between a blocked attack and millions of leaked customer records.

“A single successful phishing email can become a catastrophe. Invest in MFA, segmentation, and real-life exercises – otherwise, it’s the customers who risk paying the price.”

– Pernilla Rönn, Head of Cybersecurity, HiQ

Seven priority actions to reduce risk

  1. Reduce the success rate of phishing. Carry out regular phishing simulations for all employees. Pay special attention to administrators and other roles with sensitive access.
  1. Implement Multi-Factor Authentication (MFA). Ensure MFA is enforced across all user accounts and environments. App-based MFA or hardware tokens are more secure than SMS.
  1. Zero trust & segmentation. Apply the principle of least privilege. No user or service should have more access than absolutely necessary.
  1. Detection and rapid isolation. Build the capability to monitor and secure endpoints and logs with EDR and SIEM solutions that can detect anomalies in real time. Regularly rehearse incident response.
  1. Protect data at the storage level. Encrypt customer data both at rest and in transit. Separate sensitive fields so entire databases cannot be exploited even if they leak.
  1. Manage third-party risks. Map suppliers and partners with access to customer data. Restrict external accounts and set security requirements in contracts.
  1. Elevate the issue to the board and leadership. Report on cybersecurity regularly at the highest level. New regulations like NIS2 make this a business responsibility, not just an IT issue.

Security as a competitive advantage

As the attackers’ logic evolves, so must that of companies. Minimizing costs after an incident is no longer enough – trust is at stake.

“Security is not a cost item, it’s the insurance for customer relationships. The companies that treat security as a strategic investment will be the ones still standing when others fall behind.”

– Pernilla Rönn, Head of Cybersecurity, HiQ

Conclusion

Customer data has become one of the most sought-after assets online. The intrusion against Kering is one of many examples of how quickly it can happen – and how severe the consequences can be.

Companies that embed security into their systems, processes, and culture not only reduce the risk of breaches. They also strengthen their competitiveness, their brand, and their customer relationships. In a time when hackers dig for customer data as if it were gold, only the companies that take security seriously will stand strong when the next attack comes.

Do you want to turn cybersecurity into a competitive advantage? Get in touch!

Work at HiQ

Get in touch!

Choose your nearest office, looking forward to hear from you!

Read more articles here

insight Digitalization, AI and the Future of Sweden – A Conversation with Minister for Civil Affairs Erik Slottner
insight Quantum Computers and Cybersecurity – From Future Threat to Strategic Reality
insight New Report Shows How We Use ChatGPT: Like Buying an iPhone and Only Using the Flashlight
insight From Crisis to Insight: Building a More Secure Digital Public Sector
insight The Cyber Landscape 2020–2025: From Pandemic Shock to AI-Driven Threats
insight AI sets a new standard for banks’ fraud prevention
insight When Nature Strikes: How AI Can Protect the Energy System from the Next Crisis
insight AI makes Jira the developer’s new assistant
insight Only Five Percent Succeed with AI – How to Avoid Being Among the Losers
insight From Frozen Firmware to Adaptive Intelligence: Embedded Software Is Changing the Game
insight Edge AI: Intelligence Moving into the Systems
insight Digital Resilience – The Next Competitive Advantage
insight From Docker to Kubernetes – The Story of How We Build the Next Generation of Digital Ecosystems
insight The 11 Hottest AI Agents of 2025 – and How They’re Already Transforming Business
insight AI Experiences from a Developer’s Everyday Life – How to Use AI for Coding
insight From Data to Agency: Navigating the AI Maturity Path to Agentic Systems
insight What Does “Developer Experience” Really Mean – and Why Should the Business Side Care?
insight The Future of Development: What State of Software 2025 Reveals About Tomorrow’s Tech Roles
insight From Model Year to Always Up-to-Date – How Software Is Redefining the Car’s Lifecycle
insight AI in the Power Grid – From Vision to Real-World Application
insight Efficiency Without Shortcuts – How to Get More Out of Every Step in the Development Cycle
insight Interview with Ashkan Fardost: Why We Must Understand Technology as Something Deeply Human
insight Towards a Data-Driven Future: Falu Energi & Vatten’s Strategic Journey
insight Confident in Swedish – A Language Initiative that Builds Courage and Connection
insight Java on Cloud Terms – Best Practices for AWS, Azure, and GCP
insight Building a Tech Industry Where Everyone Feels at Home
insight Spring Boot, Quarkus or Micronaut? Your Guide Through the Java Framework Jungle
insight AI – The Manufacturing Industry’s Shield Against the New Reality of Trade Tariffs?
insight How to Build Change-Resilient Teams – with Annika R Malmberg on Tech Royale
insight Vibecoding vs. DevOps: The Future of Software Development in the AI Era?  
insight From Threads to Thousands – How Virtual Threads Are Transforming Java Development
insight How Companies Can Implement the POUR Principles in Their Digital Strategy Ahead of the EAA
insight Everything You Need to Know About Digital Accessibility Before June 2025
insight How Young Professionals Can Prepare for the Future of DevOps
insight Why CxOs Should Care About the Future of DevOps
insight The Trends Shaping DevOps in 2025
insight “We Must Prepare for an Increasingly Complex Threat Landscape”
insight DeepSeek and the AI Arms Race – What Does It Mean for Sweden?
insight Unlearning for DevOps Teams: A Key Skill for the Future
insight DevOps and AI: Building Systems That Learn and Adapt
insight Insights on Leadership and Partnerships in Tech with Simona Bamerlind
insight How to Lead a Tech-Forward Organization – Insights from Ledarlabbet
insight Understanding CRA: A Path to Competitive Advantage
insight Figma’s Dev Mode: A Hands-on Guide
insight Exploring AI, Cybersecurity, and the Future of Intelligence with Staffan Truvé
insight How to Avoid Common AI Project Pitfalls
insight Cybersecurity in Focus This October: How We Can Create a Safer Digital Society
insight Understanding PSD3 and PSR: Why They Matter and What You Need to Know
insight Open Banking and the API Economy: Drivers of New Innovation in Finance
insight The Swedish Financial Infrastructure from a Tech Perspective
insight Five Keys to IT and Tech-Driven Innovation – Insights from Radar Talk
insight The Rise of Autonomous Vehicles: Revolutionizing Transportation
insight AI and Sustainability: Opportunities, Challenges, and the Way Forward
insight AI – From Data to Business Decisions 
insight How HiQ Helps You and Your Business
insight What Happens if Your Software Fails?
insight Skip Projects & Pi in Software Development
insight Four Expert Tips on Business Value with GAI
insight How well do we really understand children’s digital preferences?
insight Mastering Industrial IoT
insight NIS2 – Not Just for Critical Functions
insight Navigating the AI Revolution
insight Unlocking Your Data Goldmine
insight AI Adoption in Nordic Energy and Manufacturing
insight Emerging AI Infrastructure
insight The Nordic AI Race