The North Face customer data stolen in cyber attack

The North Face has become the latest fashion retailer to be hit with a cyber attack.

The outdoor clothing specialist told shoppers that personal information had been taken during a “small scale” cyber attack in April.

North Face informed customers that it found unusual activity on its website on 23 April, which it immediately investigated.

The retailer told customers that the hackers used a technique known as “credential stuffing,” where they tried usernames and passwords stolen from another data breach to access users’ accounts on other platforms.

North Face said the stolen information could include shipping addresses, purchase history, email addresses, names, phone numbers, and dates of birth. It said that financial information had not been accessed.

Shoppers affected by the attack have been urged to change their passwords.

The news comes after retailers including M&S and Co-op have been impacted by cyber attacks in recent times.

Last month, M&S tech provider Tata Consultancy Services (TCS) launched an investigation into whether it had been a gateway for the retailer’s cyber attack.

The food and fashion giant recently warned that its profits would take a £300m hit from the fallout of the attack on its systems over the Easter bank holiday weekend.

Click here to sign up to Retail Gazette‘s free daily email newsletter