CyberSecurity news
FlagThis
Pierluigi Paganini@Security Affairs
//
Victoria's Secret has shut down its website and disabled some in-store services following a cybersecurity incident. The lingerie retailer's online presence was temporarily halted during the Memorial Day Weekend, a peak holiday shopping period. While physical Victoria's Secret and PINK retail stores remain open, the company has taken steps to address the issue and has engaged third-party experts to restore operations. They do not know when operations will be back up and running.
The incident has disrupted online returns, fulfillment of recent orders, and the redemption of direct mail coupons, prompting the company to extend its U.S. return window by 30 days and extend expired coupon redemption windows. Victoria's Secret customers have expressed frustration with the lack of updates and difficulty contacting representatives through chat, email, or phone. They are working to fulfill orders placed before Monday.
The cyberattack on Victoria's Secret is part of a disturbing trend targeting global retailers, with recent breaches at Dior, Adidas, Harrods, Co-op, and Marks & Spencer. Experts such as Darren Guccione, CEO of Keeper Security, warn that this may signal that cybercrime groups are now actively targeting U.S. companies. Security professionals urge retailers to adopt proactive strategies like Privileged Access Management (PAM) and multi-factor authentication, while consumers are advised to use password managers and dark web monitoring services to protect themselves.
ImgSrc: securityaffairs
References :
The incident has disrupted online returns, fulfillment of recent orders, and the redemption of direct mail coupons, prompting the company to extend its U.S. return window by 30 days and extend expired coupon redemption windows. Victoria's Secret customers have expressed frustration with the lack of updates and difficulty contacting representatives through chat, email, or phone. They are working to fulfill orders placed before Monday.
The cyberattack on Victoria's Secret is part of a disturbing trend targeting global retailers, with recent breaches at Dior, Adidas, Harrods, Co-op, and Marks & Spencer. Experts such as Darren Guccione, CEO of Keeper Security, warn that this may signal that cybercrime groups are now actively targeting U.S. companies. Security professionals urge retailers to adopt proactive strategies like Privileged Access Management (PAM) and multi-factor authentication, while consumers are advised to use password managers and dark web monitoring services to protect themselves.
ImgSrc: securityaffairs
Share:
References :
- cyberinsider.com: Victoria’s Secret Shuts Down Website and Store Systems Following Cyberattack
- securityaffairs.com: Victoria’s Secret ‘s website offline following a cyberattack
- Davey Winder: Victoria’s Secret Lingerie Site Down — Security Incident Cited
- SecureWorld News: Victoria's Secret Latest Victim of Cyberattacks
- Graham Cluley: Victoria's Secret has reportedly suffered a major IT outage due to a cybersecurity "incident."
- www.cybersecuritydive.com: Victoria's Secret shuts down website in response to security incident
- techcrunch.com: Victoria’s Secret hit by outages as it battles security incident
- thecyberexpress.com: Victoria’s Secret Website Down After Security Incident
Classification:
- HashTags: #Cyberattack #RetailSecurity #SecurityIncident
- Company: Victoria's Secret
- Target: Victoria's Secret
- Product: Website
- Feature: Security Incident
- Type: Hack
- Severity: Medium