Luxottica
  • Total Records210,791,908
  • Unique Emails74,963,039
  • Unique Email Providers2,514,902
  • Unique First Names68,096,420
  • Unique Addresses71,246,454

The Luxottica Data Breach: What Happened and What Was Exposed?

In March 2021, Luxottica—one of the world's most prominent eyewear manufacturers and retailers—experienced a significant data breach through a third-party partner. The incident led to a massive exposure of personal information, impacting more than 210 million records containing names, birthdates, gender, email addresses, physical address details, and phone numbers. While the breach initially occurred in early 2021, it came to broader public attention later, when the dataset appeared for sale on an underground forum in late 2022. Luxottica, known for brands like Ray-Ban and Oakley, confirmed the breach and has been working to understand the full extent of the compromise and their responsibilities regarding notification and data protection.

What Information Was Leaked in the Luxottica Breach?

The data exposed in the Luxottica breach includes a wide array of personally identifiable information (PII). Impacted details are the first, middle, and last names of customers, dates of birth, gender data, email addresses, street addresses (including apartment or suite details), city, state, and contact phone numbers. Such comprehensive exposure significantly increases the risk of identity theft, phishing, and other types of fraud for those affected.

How Many People Were Affected?

The breach affected over 210 million records in total, making it one of the largest breaches of personal data associated with a retail or consumer brand. Because many customers have interacted with Luxottica brands or partners worldwide, the scale and reach of the breach are especially broad.

Timeline of Events: When Did the Luxottica Breach Happen?

  • March 2021: The breach occurred through a Luxottica partner, enabling unauthorized access to customer databases.
  • Late 2022: The stolen data surfaced on hacking forums, being advertised and sold on the dark web, which brought the incident to wider public notice.
  • Company Response: Luxottica acknowledged the breach, began its investigation, and has been assessing the necessary next steps, including regulatory notifications and support for affected individuals.

Frequently Asked Questions

What happened in the Luxottica data breach?

Luxottica suffered a data breach in March 2021 through a third-party partner. Personal information of customers was accessed and later made available on hacking forums.

How many users were impacted by the Luxottica breach?

More than 210 million user records were involved, making this one of the largest consumer data breaches in recent history.

What kind of data was exposed in the Luxottica breach?

Leaked data included first, middle, and last names, birthdates, genders, emails, street and mailing addresses, city, state, and phone numbers.

When did the Luxottica data breach happen?

The incident occurred in March 2021. The compromised data began circulating on underground forums in late 2022.

How can I check if I'm in the Luxottica breach?

You can check if your information was part of the Luxottica breach by utilizing the DeHashed search engine.