The North Face has alerted customers that personal information was compromised during a credential stuffing attack on April 23, 2025. This incident marks the fourth such attack on the brand's website since 2020, with exposed data including names, purchase history, and contact information, although payment details remain secure. The company is now sending notifications to affected customers while facing criticism for not enforcing multi-factor authentication on all accounts.