In a regulatory filing submitted on Thursday, VF Corporation, the parent company of several apparel brands such as Vans, North Face, and Timberland, officially disclosed that their December cyberattack compromised 35 million customers.
The ransomware gang ALPHV (BlackCat) is claiming credit for the attack, which resulted in stolen personal data, disrupted operations, and several canceled orders due to lack of fulfillment.
Why it matters: The magnitude of this data breach is another example of large-scale cyberattacks and it underscores the substantial impact on consumers, business operations, and potential reputational damage. Cybersecurity threats must be met with heightened vigilance, for customers and companies alike.
- Even after substantial restoration of its IT systems, VF Corp continued to work through minor residual impacts from the cyber incident, reflecting the long-term effects such attacks can have on a company’s operations.
- VF Corp. stated that it does not collect sensitive information like social security numbers or payment details, and there is no evidence that passwords were acquired as a result of the breach.
- VF Corp’s collaboration with federal law enforcement indicates the seriousness of the cyber incident and the involvement of potentially sophisticated criminal elements.
VF Corp’s cyber incident causes data breach of 35.5 million consumers – Yahoo Finance
Vans & The North Face owner admits hackers stole 35 mn customers’ data – The Statesman
