North Face and Cartier customer data stolen in cyber attacks

Fashion marque The North Face and luxury jeweller Cartier person go the latest retailers to study having lawsuit information stolen successful cyber attacks.

North Face has emailed immoderate customers saying it discovered a "small-scale" onslaught successful April this year.

Cartier said "an unauthorized enactment gained impermanent entree to our system".

Both brands accidental information specified arsenic customers names and email addresses were taken, but fiscal accusation was not.

There has been a question of cyber attacks connected high-profile retailers successful caller weeks, including Adidas, Victoria's Secret and Harrods.

Marks and Spencer (M&S) and the Co-op had their operations severely disrupted erstwhile they were targeted successful April.

North Face told customers the hackers it was targeted by utilized a method called "credential stuffing", wherever attackers effort usernames and passwords stolen from different information breach, successful the anticipation customers person reused the aforesaid passwords crossed aggregate accounts.

They accidental the attackers whitethorn person been capable to summation entree to immoderate users' shipping addresses and acquisition histories.

Affected customers volition request to alteration their passwords.

North Face's owner, VF Corporation, was deed by a abstracted cyber onslaught successful December 2023.

That affected different of its brands, Vans, with its customers being warned their accusation whitethorn beryllium astatine risk.

Cartier's information breach, meanwhile, was a hack of its strategy wherever attackers "obtained constricted lawsuit information," according to an email to its customers seen by BBC News.

Passwords and paper details were not accessed, it said.

The steadfast added: "We contained the contented and person further enhanced the extortion of our systems and data."

It besides said it had reported the incidental to the applicable authorities.

BBC News has contacted North Face and Cartier for comment.

Retailers are often targets of cyber attacks, and determination person been a drawstring of high-profile companies publically reporting being hacked recently.

The attacks are a "harsh reality" for the industry, said James Hadley, laminitis of cyber-security institution Immersive.

Retailers are "overflowing with lawsuit information," becoming "easy targets for attackers," helium added.

Stolen lawsuit information tin beryllium utilized to impersonate morganatic companies and instrumentality victims into giving distant much delicate information successful the future, with cyber-criminals "often contented to play the agelong game," helium said.

In May, Adidas said the details of radical who had contacted its assistance table were stolen.

Victoria's Secret besides had to take down its US website successful May aft a "security incident".

The onslaught connected Co-op near it with bare shelves, portion M&S says its online services will beryllium disrupted until July.

M&S estimates it volition trim profits for the existent twelvemonth by astir £300m.

On Monday, it revealed its main executive's full wage bundle had grown to £7m.