VF Estimates 35.5M Consumers’ Personal Data Stolen in Cybersecurity Incident
Vans and The North Face parent VF Corp. said millions of consumers’ personal information was stolen during a December attack on some of its IT systems.
Roughly 35.5 million consumers are impacted by the security breach, VF said in a filing with the Securities & Exchange Commission on Thursday. The company said none of that stolen information includes social security, banking or payment information. It also concluded it has so far seen no indication of consumer passwords being stolen.
The hacker appears to have had access to some of the company’s IT systems from Dec. 13 to Dec. 15.
The incident put a pause on VF-owned brands’ abilities to process and fulfill online orders, while also causing delays in sending inventory to stores. The issues caused some wholesale customers and consumers to cancel their orders, VF said in its filing.
The company said there’s still “minor residual impacts,” but that its businesses have been able to catch up on fulfillment and store replenishment backlogs.
“As of the date of this (filing), VF also believes the impacts of the cyber incident are not material and are not reasonably likely to be material to its financial condition and results of operation,” the company said.
VF Corp. is expected to report the results of fiscal third quarter on Feb. 6.