Ransomware victim disclosure
← All victimsVF Corporation
Claimed by ALPHV/BlackCat · listed 3 years ago
Status timeline
- ListedDec 22, 2023
- Data leakeddate unknown
At a glance
- Group
- ALPHV/BlackCat
- Status
- Data leaked
- Country
- United States
- Sector
- Retail & Consumer
- Listed on leak site
- Dec 22, 2023
About the victim
AI dossier — public-source company profileVF Corporation is a global apparel and footwear company headquartered in Denver, Colorado, founded in 1899. The company owns 13 major brands organized into three categories (Outdoor, Active, Work), including The North Face, Vans, Timberland, JanSport, and Eastpak. It is a publicly traded corporation with significant market presence in both consumer retail and wholesale channels.
- Industry
- Apparel & Footwear
- Address
- Denver, Colorado, United States
- Founded
- 1899
Attack summary
Severity: low — Only listing/announcement with no stated operational impact, no proof files advertised, no specific data exfiltration or encryption claims detailed in the provided leak post excerpt.The leak post provides only a general description of VF Corporation sourced from public information (Wikipedia-style content). No specific attack details, data exfiltration claims, encryption claims, or proof files are mentioned in the provided excerpt.
What the group claims
VF Corporation is an American global apparel and footwear company founded in 1899 by John Barbey and headquartered in Denver, Colorado. The company's 13 brands are organized into three categories: Outdoor, Active and Work. In 2015, the company controlled 55% of the U.S. backpack market with the JanSport, Eastpak, Timberland, and The North Face brands.
Sources
- Victim sitevfc.com
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

