North Face's The Latest Cyberattack Victim; Credit Card Data Safe

The North Face has warned its customers not to recycle log-in information on its customer accounts, following a cyberattack on its site last month that used a technique called “credential stuffing.”

In a notification filing with the Vermont Attorney General’s office, North Face’s parent VF Corp. submitted a draft of its letter to affected customers, noting that the breach occurred on April 23, 2025. The letter indicated that an attacker launched a “small-scale” credential stuffing attack” using email addresses/usernames and passwords stolen from another source, such as a breach of a different company or website, to gain unauthorized access to user accounts.

“Credential stuffing attacks can occur when individuals use the same authentication credentials on multiple websites,” VF said, add

See Full Page

330

Interests (0)

Settings

North Face's The Latest Cyberattack Victim; Credit Card Data Safe

Outrage as 'disgraceful' Trump abruptly fires longtime official with 'no explanation'

CDC links salmonella outbreak to 1.7 million eggs recalled across 9 states

Wrestling legend Ric Flair reveals cancer diagnosis after previously denying reports

Trump sends a message to Musk amid escalating feud between former allies

Democrats itching for fight over immigration

Meet All the Women Elon Musk Has Children With

Trump and Musk's Turbulent Alliance Shakes GOP

Vance says Musk making a 'huge mistake' in going after Trump but also tries to downplay the attacks

Coco Gauff wins French Open, defeats top

Kilmar Abrego Garcia is back in the US, charged with human smuggling as attorneys vow ongoing fight

Russia responds to Trump-Musk feud with jokes, jibes and job offers