Forever 21 data breach sees thousands of victims affected

A blue color image of a person trying to log into a protected laptop.
(Image credit: Shutterstock/JARIRIYAWAT)

Employees of Forever 21, both current and former, have had personal data stolen in a cyberattack that the company suffered earlier this year, the company has confirmed. 

Forever 21 confirmed unnamed threat actors were occasionally able to infiltrate the company’s infrastructure and steal sensitive data from its endpoints between early January and late March 2023. 

During this time, the hackers stole people’s full names, Social Security Numbers, birth dates, bank account numbers, and their Health Plan information.

No customers affected

In a statement given to BleepingComputer, the company’s spokesperson confirmed that the customers were not affected by the breach. Forever 21 operates 540 outlets all over the world, employing more than 40,000 people.  

The company filed a breach notice with the Office of the Maine Attorney General earlier this month, the publication stated, in which it said that it engaged with the attackers to ensure the stolen data doesn’t get leaked online. This usually happens in cases of ransomware attacks. However, no ransomware attack against Forever 21 has been confirmed. It is also worth mentioning that lately, ransomware attackers started refraining from deploying the encryptor, as it is too expensive and cumbersome to develop, maintain, and deploy. Instead, some are opting just for data theft, which might have been the case here. 

If Forever 21 did pay any ransom, the amount is unknown. The stolen data doesn’t seem to have been posted anywhere. 

In any case, caution is advised. The company will enroll affected individuals in fraud and identity theft protection services for a year, free of charge. Those who believe they might be affected by this incident should be careful when receiving emails and other forms of communication, especially if the sender appears to be Forever 21.

Via: BleepingComputer

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
A man looking at a tablet with a brown Best Buy package on the desk in front of him
Huge Christmas data breach - 14 million shipping records leaked, putting shoppers at risk
A digital themed isometric showing a neon padlock in the foreground, and a technological diagram of a processor logic board in the background.
Major breach hits employee screening firm - 3.3 million affected as hackers steal DISA data
Security
American National Insurance Company breach data found online
Ransomware
Top cannabis brand Stiiizy says hackers got access to its systems
Someone holding a passport with two boarding passes inside it
Top digital loan firm security slip-up puts data of 36 million users at risk
Security padlock and circuit board to protect data
Foh&Boh data leak leaves millions of CVs exposed - KFS, Taco Bell, Nordstrom applicants at risk
Latest in Security
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
URL phishing
HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
Ransomware
Cl0p resurgence drives ransomware attacks to new highs in 2025
Google Chrome
Google Chrome security flaw could have let hackers spy on all your online habits
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks
Data leak
A major Keenetic router data leak could put a million households at risk
Latest in News
A young woman is working on a laptop in a relaxed office space.
I’ll admit, Microsoft’s new Windows 11 update surprised me with its usefulness, providing accessibility fixes, a gamepad keyboard layout, and PC spec cards
inZOI promotional material.
inZOI has become the most wishlisted game on Steam, but I wouldn't get too caught up in the hype
Xbox Series X and Xbox wireless controller set to a green background
Xbox Insiders are currently testing a new Game Hub feature that looks useful, but I've got mixed feelings about it
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Nespresso Vertuo Pop machine in Candy Pink with coffee drinks and capsules
My favorite Nespresso coffee maker just got a fresh new makeover, and now I love it even more
Microsoft Surface Laptop and Surface Pro devices on a table.
Hate Windows 11’s search? Microsoft is fixing it with AI, and that almost makes me want to buy a Copilot+ PC