Fashion brand The North Face has emailed some customers to reveal the company’s website has been hit by a “small-scale” cyber attack.
The North Face has been hit with a cyber attack.
Fashion brand The North Face sent an email to some of its customers to reveal an attacker launched a “small-scale” attack on its website.
They wrote: “On April 23, 2025, we discovered unusual activity involving our website, thenorthface.com
(“Website”), which we investigated immediately. Following a careful and prompt investigation,
we concluded that an attacker had launched a small-scale credential stuffing attack against our Website on April 23, 2025. A “credential stuffing attack” is a specific type of cybersecurity attack where the attacker uses account authentication credentials (e.g., email addresses/usernames and passwords) stolen from another source, such as a breach of another company or website, to gain unauthorized access to user accounts. Credential stuffing attacks can occur when individuals use the same authentication credentials on multiple websites. We encourage all of our customers to use a unique password on our Website.”
The North Face told customers they were notifying them about the attack “out of an abundance of caution”, rather than because it was necessary by law.
They said: “We do not believe that the incident involved information that would require us to notify you of a data security breach under applicable law. However, we are notifying you of the incident voluntarily, out of an abundance of caution.”
What’s more, the company believes the attacker may have gained access to customers’ details via “another source”.
They wrote: “Based on our investigation, we believe that the attacker previously gained access to your email address and password from another source (not from us) and then used those same credentials to access your account on our Website.”
The North Face hit with cyber attack
