A data breach at North Face, caused by a credential stuffing attack, impacted nearly 3,000 customersβ accounts. The incident is part of a broader pattern of cyberattacks on major retailers by threat groups like Scattered Spider, highlighting the rising risks in the retail sector. #CredentialStuffing #ScatteredSpider
Keypoints
- VF Outdoor discovered unusual activity on its North Face website in April, affecting nearly 3,000 customers.
- The attack was a credential stuffing attack using stolen login information from other breaches.
- Customer data accessed included names, addresses, birth dates, and phone numbers, but payment card info was safe.
- VF Outdoor disabled all passwords and urged customers to change reused passwords for other accounts.
- Recent cyberattacks on retailers like Victoriaβs Secret, Cartier, Adidas, and Tiffany indicate a widespread threat landscape driven by groups such as Scattered Spider.
Read More: https://therecord.media/north-face-customer-accounts-data-breach-notification