How this attack affected VF Corp
The filing doesn’t specifically mention what personal data was stolen, the report adds. The company stated that it does not retain consumer Social Security numbers, bank account information or payment card information for its consumer businesses. VF Corp also didn’t have evidence about the hackers stealing customer passwords.
Earlier, the company announced that hackers have disrupted its operations “by encrypting some IT systems,” implying a ransomware attack. Later, the ransomware and extortion gang known as ALPHV (or BlackCat) also claimed credit for the breach.VF Corp also said that it was experiencing operational disruptions and its “ability to fulfill orders,” at the time of the incident. In its latest filing, the company said that it is “still experiencing minor residual impacts from the cyber incident.” However, VF assured that it had caught up on the fulfilling orders that were delayed.
The company also said that it “has substantially restored the IT systems and data that were impacted by the cyber incident, but continues to work through minor operational impacts.”
“On December 13, 2023, VF detected unauthorised occurrences on a portion of its information technology (IT) systems,” said the company.
The company also said that it was cooperating with federal law enforcement and the relevant regulatory authorities as required under the applicable law.
The Times of India Gadgets Now awards: Cast your vote now and pick the best phones, laptops and other gadgets of 2023