[8-K] LOGITECH INTERNATIONAL S.A. Reports Material Event

Rhea-AI Filing Summary

Logitech International S.A. reports a cybersecurity incident involving the exfiltration of data from an internal IT system. The company states that the incident did not affect its products, business operations or manufacturing.

Logitech believes an unauthorized third party exploited a zero-day vulnerability in third-party software to copy certain data, likely including limited information about employees, consumers, customers and suppliers. The vulnerability has been patched, and Logitech does not believe sensitive personal data such as national ID numbers or credit card details were in the affected system. The company currently believes the incident will not have a material adverse effect on its financial condition or results of operations and notes it maintains cybersecurity insurance expected to cover various incident-related costs, subject to policy limits and deductibles.

Insights

Cybersecurity and operational risk analyst

Logitech discloses a contained data breach with limited operational impact.

Logitech reports a data exfiltration incident tied to a zero-day vulnerability in third-party software, but indicates no impact on products, operations or manufacturing. The affected internal IT system is believed to have held limited information about employees, consumers, customers and suppliers, and not sensitive identifiers such as national ID numbers or credit card data.

The company has patched the vulnerability after the vendor’s release and is working with external cybersecurity firms, which suggests a structured response and independent assessment. Management currently believes the incident will not have a material adverse effect on financial condition or results of operations, which sets expectations about near-term financial exposure while the investigation continues.

Logitech highlights a comprehensive cybersecurity insurance policy expected to cover incident response, forensics, business interruption, legal actions and potential regulatory fines, subject to limits and deductibles. The ultimate impact will depend on findings from the ongoing investigation and any regulatory or legal developments, as described in the company’s broader risk factors.

0001032975false00010329752025-11-142025-11-14

UNITED STATES

SECURITIES AND EXCHANGE COMMISSION

Washington, D.C. 20549

FORM 8-K

CURRENT REPORT

Pursuant to Section 13 OR 15(d) of

The Securities Exchange Act of 1934

Date of Report: November 14, 2025

(Date of earliest event reported)

LOGITECH INTERNATIONAL S.A.

(Exact name of registrant as specified in its charter)

Commission File Number: 0-29174

Canton of Vaud,

Switzerland

None

(State or other jurisdiction of incorporation or organization)

(I.R.S. Employer Identification No.)

Logitech International S.A.
EPFL - Quartier de l'Innovation
1015 Lausanne, Switzerland
c/o Logitech Inc.
3930 North First Street
San Jose,			California			95134
(Address of principal executive offices and zip code)

(510)			795-8500
(Registrant’s telephone number, including area code)

Check the appropriate box below if the Form 8-K filing is intended to simultaneously satisfy the filing obligation of the registrant under any of the following provisions:

☐            Written communications pursuant to Rule 425 under the Securities Act (17 CFR 230.425) 

☐       Soliciting material pursuant to Rule 14a-12 under the Exchange Act (17 CFR 240.14a-12)

☐            Pre-commencement communications pursuant to Rule 14d-2(b) under the Exchange Act (17 CFR 240.14d-2(b))

☐           Pre-commencement communications pursuant to Rule 13e-4(c) under the Exchange Act (17 CFR 240.13e-4(c))

Securities registered pursuant to Section 12(b) of the Exchange Act:

Title of each class			Trading Symbol(s)			Name of each exchange on which registered
Registered Shares			LOGN			SIX Swiss Exchange
Registered Shares			LOGI			Nasdaq Global Select Market

Indicate by check mark whether the registrant is an emerging growth company as defined in Rule 405 of the Securities Act of 1933 (§230.405 of this chapter) or Rule 12b-2 of the Securities Exchange Act of 1934 (§240.12b-2 of this chapter).

Emerging growth company ☐  

If an emerging growth company, indicate by check mark if the registrant has elected not to use the extended transition period for complying with any new or revised financial accounting standards provided pursuant to Section 13(a) of the Exchange Act. o  

Item 7.01 Regulation FD Disclosure.

Logitech International S.A. (“Logitech”) recently experienced a cybersecurity incident relating to the exfiltration of data. The cybersecurity incident has not impacted Logitech’s products, business operations or manufacturing.

Upon detecting the incident, Logitech promptly took steps to investigate and respond to the incident with the assistance of leading external cybersecurity firms.

While the investigation is ongoing, at this time, Logitech believes that the unauthorized third party used a zero-day vulnerability in a third-party software platform and copied certain data from the internal IT system. The zero-day vulnerability was patched by Logitech following its release by the software platform vendor. The data likely included limited information about employees and consumers and data relating to customers and suppliers. Logitech does not believe any sensitive personal information, such as national ID numbers or credit card information, was housed in the impacted IT system.

As of the date of this filing, Logitech believes that the incident will not have a material adverse effect on its financial condition or results of operations. Logitech maintains a comprehensive cybersecurity insurance policy, which we expect will, subject to policy limits and deductibles, cover costs associated with incident response and forensic investigations, as well as business interruptions, legal actions and regulatory fines, if any.

Forward-Looking Statements

The information included in Item 7.01 contains forward-looking statements within the meaning of Section 27A of the Securities Act of 1933, as amended, and Section 21E of the Securities Exchange Act of 1934, as amended, including, without limitation, statements regarding the extent and potential impact of the cybersecurity incident, the means by which the unauthorized third-party accessed the internal IT system, the nature of data that may have been copied, the potential effect on our financial condition and results of operations, and the expected cybersecurity insurance policy coverage. The forward-looking statements in this Form 8-K are subject to risks and uncertainties that could cause actual results and events to differ materially from those anticipated in these forward-looking statements. Factors that might cause actual results to differ materially from those anticipated in forward-looking statements include, but are not limited to, our ongoing assessment of the impacts of the cybersecurity incident, including the potential discovery of additional information related to the incident in connection with our ongoing investigation or otherwise; our ability to remediate the cybersecurity incident; the impact of the cybersecurity incident on our relationships with consumers, employees, customers, suppliers and governmental regulators; the legal, reputational, and financial risks resulting from the cybersecurity incident, including as may arise from any potential regulatory inquiries and/or litigation to which we may become subject in connection with the incident; remediation and other additional costs that we may incur in connection with the investigation and remediation of the incident; and the risks and uncertainties discussed in our other periodic filings with the Securities and Exchange Commission (“SEC”), including our Annual Report on Form 10-K for the fiscal year ended March 31, 2025 and other reports filed with the SEC, available at www.sec.gov, under the caption Risk Factors and elsewhere. Logitech does not undertake any obligation to update any forward-looking statements to reflect new information or events or circumstances occurring after the date of this Form 8-K.

SIGNATURES

Pursuant to the requirements of the Securities Exchange Act of 1934, the registrant has duly caused this report to be signed on its behalf by the undersigned hereunto duly authorized.

Logitech International S.A.

/s/ Johanna (Hanneke) Faber

  Johanna (Hanneke) Faber

 Chief Executive Officer

/s/ Samantha Harnett

 Samantha Harnett

 Chief Legal Officer

November 14, 2025

FAQ

What cybersecurity incident did Logitech International S.A. (LOGI) disclose?

Logitech disclosed a cybersecurity incident involving the exfiltration of data from an internal IT system by an unauthorized third party, linked to a zero-day vulnerability in third-party software.

Did Logitech report any impact on its products or operations from the cyber incident?

Logitech stated that the cybersecurity incident has not impacted its products, business operations or manufacturing.

What type of data does Logitech believe was involved in the breach?

Logitech believes the copied data likely included limited information about employees and consumers and data relating to customers and suppliers, and does not believe sensitive personal information such as national ID numbers or credit card information was in the affected system.

How did Logitech respond to the zero-day vulnerability used in the attack?

After detecting the incident, Logitech engaged leading external cybersecurity firms to investigate and patched the zero-day vulnerability following its release by the software platform vendor.

Does Logitech expect a material financial impact from the cybersecurity incident?

As of the date of the report, Logitech believes the incident will not have a material adverse effect on its financial condition or results of operations.

What cybersecurity insurance coverage does Logitech have for this incident?

Logitech maintains a comprehensive cybersecurity insurance policy that it expects will, subject to policy limits and deductibles, cover costs for incident response, forensic investigations, business interruptions, legal actions and any regulatory fines.

What risks related to the cyber incident does Logitech highlight going forward?

Logitech notes potential legal, reputational and financial risks, including possible regulatory inquiries and litigation, and refers to broader risk factors in its periodic SEC reports.