The North Face, a VF Company

Outdoor apparel brand 'The North Face' suffered a large-scale credential stuffing attack that resulted in the hacking of 194,905 accounts on the thenorthface.com website.

The attack affected about 200,000 accounts and compromised information like full name, purchase history, billing address, shipping address, contact number, XPLR Pass reward records, and other information.

The North Face reset all user passwords and wiped out all payment card tokens on accounts accessed by unauthorized intruders.

The impacted customers with an account on the website were also asked to enter a new password and re-enter their payment card details to make a purchase.

Source: https://www.bleepingcomputer.com/news/security/200-000-north-face-accounts-hacked-in-credential-stuffing-attack/

"id": "THE224421922",
"linkid": "the-north-face",
"type": "Cyber Attack",
"date": "09/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"