cyber daily logo

Breaking news and updates daily. Subscribe to our Newsletter

Breaking news and updates daily. Subscribe to our Newsletter X facebook linkedin Instagram Instagram

Vans warns customers of scammers following ALPHV data breach

The owner of the Vans shoe brand has issued a warning regarding its December cyber incident, saying customers could be susceptible to fraud and phishing attacks.

user icon Daniel Croft
Thu, 21 Mar 2024
Vans warns customers of scammers following ALPHV data breach
expand image

Parent company VF Corporation, which also owns Timberland and The North Face, announced that it had detected “unauthorised occurrence” on its network on 13 December 2023.

During the incident, some of its IT services were encrypted and data stolen, affecting 35.5 million customers.

While the group responsible for the attack was initially unknown, the now defunct ALPHV (also known as BlackCat) has since claimed responsibility, announcing its role on 28 December.


According to VF Corporation, customer data accessed included email addresses, phone numbers, full names, shipping and billing addresses, and in some cases, payment method information, order histories and total order values.

However, the company did say that it was impossible that any financial data such as credit card information would be at risk.

“Please note that, in any event, we never collect or retain in our IT systems any detailed payment/financial information, such as, for example, bank account or credit card information, so there is no chance that any detailed financial information was exposed to the threat actors,” said VF Corporation.

Despite this, the company has advised its customers to remain vigilant and alert that scammers could engage in fraud or other forms of attacks such as spear phishing.

It is unlikely that the threat group behind the incident in the first place will be the ones to engage in these attacks, as ALPHV has thrown in the towel.

Following one of its affiliates launching an attack on Change Healthcare in the US, the victim company paid out $22 million in ransom, which ALPHV then pocketed before going dark.

ALPHV blamed “the feds” for its retirement, claiming that the FBI and global law enforcement had taken its infrastructure down just as it had late last year.

However, it appears that the group just reused the takedown banner that appeared on its site in the initial operation and has scammed its affiliate out of the money.

Daniel Croft

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

cd intro podcast

Introducing Cyber Daily, the new name for Cyber Security Connect

Click here to learn all about it
cyber daily subscribe
Be the first to hear the latest developments in the cyber industry.