Credit: Getty Images by Tunvarat Pruksachat

Cyberattack Incident Compromises North Face Customer Data

About 1,500 users of the North Face brand’s website were impacted after a cyberattack on the company that happened on April 23, 2025. The attack, which was confirmed by the company to Fashion Dive, compromised customers’ email and shipping addresses, names, dates of birth, and telephone numbers, according to a consumer notice letter posted by the Attorney General of Vermont’s office.

The company states in the letter: “Following a careful and prompt investigation, we concluded that an attacker had launched a small-scale credential stuffing attack against our website.” Credential stuffing is defined as a cyberattack where cybercriminals use stolen or leaked login credentials (such as usernames and passwords) to attempt to access user accounts on different websites or applications.

A spokesperson of the company reports that an investigation found no credit card information was compromised, according to Fashion Dive. “The incident was quickly contained, and those affected were promptly notified,” the spokesperson said in the article. The company said in the letter that payment cards were not compromised because they are held on a third-party payment card processor platform.

The VF-owned brand said it is notifying customers impacted “voluntarily, out of an abundance of caution,” per the letter. “Please know that protecting your personal information is something that we take very seriously,” it goes on to state.

Protecting Your Company Against Cyberattacks

This is just one of the latest reports in a slew of cyberattacks happening in the apparel and retail space. Last December, the VF Corp (parent company of North Face) reported a cyberattack that impacted the Vans brand. And just a few months ago, a YouTuber uncovered malware in Procolored printer software.

While many apparel decorators may not view their businesses as being a target of a cyberattack, the fact is that many already have been attacked. In episode 28 of the Apparelist podcast, Tom Falteich and Amy Servi of Clients First Business Solutions (a PRINTING United Alliance Affinity partner), both note that there are a lot of areas where apparel decorating businesses are vulnerable to cyber attacks, such as images from clients, UPS accounts, saved passwords, and more.

“Cyber attacks are happening across multiple sizes of companies,” Servi said during the podcast. She and Falteich both discussed an FBI report that notes smaller companies are now being targeted more and more versus larger ones when it comes to cyberattacks.