Vans sneaker maker VF Corp said on Thursday the cyber incident that hit the company in December led to a breach of personal data of about 35.5 million consumers, and added that it does not expect a material impact to its financials.
The unauthorised activity, detected on Dec. 13, disrupted global customer orders on its e-commerce site, delayed order fulfillment and led to cancellation of some product orders, VF disclosed in a regulatory filing.
However, the company said it does not collect or retain any consumer social security numbers, bank account information or payment card information in its IT systems, adding that there is no evidence to date that any consumer passwords were acquired.
The company said it has substantially restored the IT systems and data that were impacted by the cyber incident, while working through minor operational issues.
By Mariam Sunny; Editing by Shailesh Kuber
Learn more:
What Is VF Corp.’s Plan for Vans and Its Other Struggling Brands?
Activist investors are demanding big changes at the fashion conglomerate, which also owns The North Face, Supreme, Timberland and other brands. The company will have a chance to lay out its own vision when it releases earnings this week.