VF Corp Says Hackers Stole Personal Data of 35.5 Million Customers in Cyberattack
VF Corp, the parent company of popular clothing brands Vans, Supreme, and The North Face, announced on Thursday that a data breach in December resulted in the theft of personal data from 35.5 million customers.
The Denver, Colorado-based company disclosed the incident in a filing to regulators on Thursday. It did not provide details about the types of personal data that were compromised or if the company has identified the stolen information. Colin Wheeler, a spokesperson for VF Corp, did not respond to requests for further information from TechCrunch.
According to VF Corp, its consumer brands do not store Social Security numbers, bank account details, or payment card information, and there is no evidence that customer passwords were compromised in the breach.
The company previously stated that the hackers disrupted its operations by encrypting some of its IT systems, indicating a ransomware attack. The ransomware and extortion gang ALPHV, also known as BlackCat, claimed responsibility for the breach.
At the time of the incident, VF Corp reported disruptions in its operations and order fulfillment. However, in the filing, the company stated that it has caught up on fulfilling orders that were delayed due to the attack, although minor residual impacts are still being experienced.
VF Corp confirmed that it has largely restored the impacted IT systems and data, but is still addressing minor operational consequences resulting from the cyberattack.
Do you work at VF Corp and have more information about the cyberattack? Contact Zack Whittaker by email or share files and documents with TechCrunch via our SecureDrop.
[…] a founder, and it’s only fitting that her fundraising strategies are just as unique. Her company Fuck You Pay Me (FYPM), a Glassdoor-like platform for influencers, recently raised a seed extension […]