Skip to content
Technology

Personal data of The North Face customers at risk following cyber attack breach

More than 1,500 users of the website belonging to a VF-owned brand had their passwords automatically changed.

 and  Administrator
1 min read
Customer data breached in North Face cyber attack, exposing personal information
Customer data breached in North Face cyber attack, exposing personal information

Personal data of The North Face customers at risk following cyber attack breach

==============================================================================

The North Face, a popular outdoor clothing brand, has recently experienced a cybersecurity incident. The incident, which occurred on their e-commerce website in April, was confirmed by a brand spokesperson to Fashion Dive.

According to the Attorney General of Vermont's office, a consumer notice letter about the incident was posted. The breach compromised approximately 1,500 customers' email and shipping addresses, names, dates of birth, and telephone numbers. However, no credit card information was compromised during the incident.

The incident was a credential stuffing attack, where unauthorized parties used stolen email addresses, usernames, and passwords to access accounts on other platforms. Interestingly, the attacker obtained the usernames from a separate source and not from The North Face itself.

The North Face swiftly responded to the incident, disabling the affected passwords and promptly notifying the affected customers. The company also stated that protecting the data of its customers is a top priority.

This incident comes amidst an increase in cybersecurity incidents in the technology and corporate/finance sectors. Notably, fashion and apparel companies like Victoria's Secret and Dior have also reported similar incidents recently.

It's worth noting that 80% of people reuse the same or similar passwords on multiple accounts, making credential stuffing more likely. This underscores the importance of using unique and strong passwords for each account.

VF, The North Face's holding company, faced another cybersecurity incident in December 2023, affecting the company's ability to fulfill orders during the holiday season. The company is working diligently to strengthen its cybersecurity measures to prevent such incidents in the future.

Despite the incident, The North Face remains committed to providing its customers with high-quality products and services. The company encourages its customers to stay vigilant and to report any suspicious activities to the appropriate authorities.

Read also:

Related

Latest