Netvora logo
Submit Startup Subscribe
Home About Contact Submit Startup Subscribe

The North Face Customers Hit by Credential Stuffing Attack

Comment

The North Face Customers Hit by Credential Stuffing Attack

Netvora June 4, 2025 at 02:01 PM Security
The North Face Customers Hit by Credential Stuffing Attack

The North Face Customers Hit by Credential Stuffing Attack

By Netvora Tech News

Almost 3,000 customers of outdoor clothing brand The North Face have been affected by a credential stuffing attack, in which attackers gained access to their accounts using reused passwords. The attackers may have been targeting the customers' loyalty points, which can be redeemed for products. The attack, which was reported yesterday, is a type of phishing scam in which hackers use previously leaked email addresses and passwords to gain access to accounts. The attackers attempt to use the stolen login credentials to log in to multiple websites, including those of The North Face. The company's loyalty program, which rewards customers with points for every dollar spent, may have been a target of the attackers. The North Face has notified affected customers that the attackers gained access to their accounts because they reused their passwords. The company's parent firm has reported the incident to the US Attorney General's Office, stating that the attackers gained access to 2,861 accounts using reused passwords. This is not the first time The North Face customers have been targeted by credential stuffing attacks. Similar incidents occurred in 2020 and 2022, in which attackers gained access to nearly 200,000 accounts.

How Credential Stuffing Works

Credential stuffing is a type of attack in which hackers use previously leaked email addresses and passwords to gain access to accounts. The attackers use automated software to try multiple combinations of login credentials, often using lists of common passwords or password variations.

  • The hackers may use previously leaked email addresses and passwords to gain access to accounts.
  • The attackers attempt to use the stolen login credentials to log in to multiple websites.
  • The attack is often successful because users reuse passwords across multiple websites.

The Importance of Password Security

Password security is crucial in preventing credential stuffing attacks. The North Face incident highlights the importance of using unique, complex passwords for each account and avoiding the reuse of passwords.

Users can protect themselves from credential stuffing attacks by:

  • Using unique, complex passwords for each account.
  • Enabling two-factor authentication, which adds an extra layer of security.
  • Monitoring account activity and reporting any suspicious behavior.

Comments (0)

Leave a comment

Back to homepage

You might also like