Forever 21

Forever 21

The fashion retailer Forever 21 has discovered a cyber incident that impacted a limited number of systems and exposed the personal information of more than 500,000 individuals.

The study found that between January 5 and March 21 of 2023, threat actors had numerous points of access to specific Forever 21 systems.

The exposed information includes names, Social Security numbers, dates of birth, bank account numbers (without access code or pin), and information regarding the Forever21 health plan, including enrollment and premiums paid.

To prevent similar incidents from occurring in the future, the company announced it has implemented additional cyber security measures to protect its infrastructure.

FOREVER 21 offered a complimentary 12-month membership of Experian’s® IdentityWorks℠ identity protection service.

Source: https://securityaffairs.com/150180/data-breach/forever-21-data-breach.html

TPRM report: https://scoringcyber.rankiteo.com/company/forever-21

"id": "for22111923",
"linkid": "forever-21",
"type": "Data Leak",
"date": "03/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 500000,
                        'industry': 'Fashion Retail',
                        'name': 'Forever 21',
                        'type': 'Company'}],
 'customer_advisories': 'Offered a complimentary 12-month membership of '
                        'Experian’s® IdentityWorks℠ identity protection '
                        'service.',
 'data_breach': {'number_of_records_exposed': 500000,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Names',
                                              'Social Security numbers',
                                              'Dates of birth',
                                              'Bank account numbers (without '
                                              'access code or pin)',
                                              'Forever21 health plan '
                                              'information']},
 'description': 'Forever 21 has discovered a cyber incident that impacted a '
                'limited number of systems and exposed the personal '
                'information of more than 500,000 individuals.',
 'impact': {'data_compromised': ['Names',
                                 'Social Security numbers',
                                 'Dates of birth',
                                 'Bank account numbers (without access code or '
                                 'pin)',
                                 'Forever21 health plan information'],
            'systems_affected': 'Limited number of systems'},
 'initial_access_broker': {'reconnaissance_period': 'Between January 5 and '
                                                    'March 21 of 2023'},
 'post_incident_analysis': {'corrective_actions': 'Implemented additional '
                                                  'cyber security measures'},
 'recommendations': 'Implement additional cyber security measures to protect '
                    'infrastructure.',
 'response': {'containment_measures': 'Implemented additional cyber security '
                                      'measures'},
 'title': 'Forever 21 Data Breach',
 'type': 'Data Breach'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.