Outdoor clothing brand The North Face has been hit by a major cyber attack in which nearly 200,000 customer accounts have been hacked.
The company confirmed that its website thenorthface.com was hit by a large-scale login credentials attack that led to the hacking of 194,905 customer accounts.
The attackers were able to steal users’ email addresses and passwords, as well as personal information stored on user accounts, but it appears that no payment or card details were compromised.
North Face breakthrough
The company is now contacting affected customers, informing them of the attack and instructing them to update their passwords immediately.
In a Infringement Notice Document (opens in new tab)The North Face told customers it detected “unusual activity” on its website on August 11, 2022. After an investigation, it found that attackers carried out a credential stuffing attack against the website sometime between July 26 and August 19, 2022. .
Credential stuffing attacks cause criminals to use login or authentication information, such as email addresses and passwords from previous data breaches or leaks, in an attempt to find other accounts to log into.
In this case, The North Face confirmed that the attackers would have had access to details, including full names, purchase history, billing and shipping addresses, phone numbers, and even gender.
Fortunately, no payment details were stored on the website, so all credit and debit card details remained safe.
“We do not keep a copy of payment card data on thenorthface.com. We only keep a ‘token’ associated with your payment card and only our third-party payment card processor keeps payment card data,” the company said.
“The token cannot be used anywhere else to initiate a purchase than on thenorthface.com.”
Affected user accounts and passwords have been reset, with users being instructed to choose strong and unique new passwords not used on other websites or platforms.
Through BleepingComputer (opens in new tab)