The California Office of the Attorney General reported that VF Outdoor, LLC, doing business as The North Face®, experienced a credential stuffing attack on October 8 and 9, 2020. The breach potentially compromised personal information including email addresses, passwords, names, birthdays, and contact details, affecting an unspecified number of individuals. The report was issued on November 5, 2020.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-195859
TPRM report: https://www.rankiteo.com/company/the-north-face
"id": "the543072925",
"linkid": "the-north-face",
"type": "Breach",
"date": "10/2020",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Unspecified number of '
'individuals',
'industry': 'Retail',
'name': 'VF Outdoor, LLC',
'type': 'Company'}],
'attack_vector': 'Credential Stuffing',
'data_breach': {'personally_identifiable_information': True,
'type_of_data_compromised': ['email addresses',
'passwords',
'names',
'birthdays',
'contact details']},
'date_detected': '2020-10-08',
'date_publicly_disclosed': '2020-11-05',
'description': 'The California Office of the Attorney General reported that '
'VF Outdoor, LLC, doing business as The North Face®, '
'experienced a credential stuffing attack on October 8 and 9, '
'2020. The breach potentially compromised personal information '
'including email addresses, passwords, names, birthdays, and '
'contact details, affecting an unspecified number of '
'individuals. The report was issued on November 5, 2020.',
'impact': {'data_compromised': ['email addresses',
'passwords',
'names',
'birthdays',
'contact details']},
'references': [{'date_accessed': '2020-11-05',
'source': 'California Office of the Attorney General'}],
'title': 'Credential Stuffing Attack on The North Face®',
'type': 'Credential Stuffing Attack'}