Data Breach

The North Face Data Breach

195K records exposed • July 2022

Hackers tried usernames and passwords stolen from other websites on North Face accounts. When people reused passwords, the hackers got in and stole their information.

What Happened

Attackers used credentials from other breaches to access North Face customer accounts through credential stuffing, accessing purchase history and personal information.

Attack method: Credential stuffing attack

What Data Was Exposed

Email addresses, Names, Billing addresses, Purchase history, Loyalty points

Is your business exposed?

What to Do If You're Affected

  1. 1.

    Change your North Face password

  2. 2.

    Never reuse passwords across sites

  3. 3.

    Check loyalty points for unauthorized use

Lessons for Businesses

  • Credential stuffing remains highly effective
  • Password reuse enables cascading breaches
  • Rate limiting and bot detection are essential

Sources

Related Breaches

Paypal 2022, Ebay 2014

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices