North Face and Cartier Hit By Cyber Attacks

The North Face and Cartier have confirmed that they have both been victims of separate cyber attacks that have exposed customer data, making them the latest in a growing list of retailers hit by hackers. North Face said the breach, which was discovered on April 23rd, was caused by a "small-scale credential stuffing attack" - a method where stolen usernames and passwords from past breaches are reused. Information like names, email addresses, shipping details, purchase history, and phone numbers may have been accessed, though no payment details were compromised.
Cartier also reported that "an unauthorized party gained temporary access to our system" and took "limited client information." The luxury brand reassured customers that no passwords or card data were accessed, and added: "We contained the issue and have further enhanced the protection of our systems and data."
These incidents follow recent breaches at Adidas, Victoria’s Secret, M&S, and Co-op. Cybersecurity expert James Hadley described retailers as “easy targets for attackers” because they’re “overflowing with customer information.” As these threats continue, affected customers are being urged to change passwords and avoid reusing them across sites.