2025.06.22

cyberintel.xyz

Intelligence for the Cybersecurity Community

Victoria’s Secret Cyber Attack Catches Retail Behemoth With Panties Down

4 days ago Sohum J Shah
A tram with an ad for retail giant Victoria's Secret

The retail giant’s website was offline for four days after the cyber incident.

June 7 – Victoria’s Secret (NYSE: VSCO.N) disclosed on Tuesday, June 3, 2025, that its website was taken offline for four days last week due to a cybersecurity incident. The Victoria’s Secret cyber attack also impacted internal systems, as well as the company’s earnings call.

A shopping mall with a retail location for the Victoria's Secret cyber attack
A shopping mall with a location for the retail giant, Victoria’s Secret.

According to a press release from June 3, the company “detected a security incident involving its information technology systems” on May 24, 2025. The company then engaged third-party experts and enacted “response protocols to attempt to contain and eradicate unauthorized network access.”

The company took precautions by temporarily shutting down corporate IT systems. They also took down their e-commerce website on May 26. The company was able to restore the website on May 29, although corporate IT systems remained down.

Earnings Call Postponed as a Result of Victoria’s Secret Cyber Attack

As a result of the Victoria’s Secret cyber attack, the company could not to access its systems for its full earnings report and postponed its scheduled earnings call. Although the outage did not affect that earnings report, Dana Telsey of Telsey Advisory believes that this breach could have a significant impact on the company’s revenue this quarter, as digital sales made up approximately one third of the company’s sales last year, the analyst told Yahoo! Finance.

According to a Victoria’s Secret statement, “The restoration process has prevented employees from accessing certain systems and information needed to support the company’s release of its financial results.”

“The company immediately enacted its response protocols to attempt to contain and eradicate unauthorized network access, and third-party experts were engaged,” the statement continued.

The company did not respond to a request for comment; however, shutting down its website in response to the breach “suggest it’s been fending off a ransomware attack,” according to PCMag.

The company, in its statement, warned of risks to its “ability to maintain the security of customer, associate, third-party and company information.”

About The Author

Sohum J Shah

Sohum is a tech entrepreneur and consultant, focused on data science & analytics, cybersecurity, and emerging industries.

See author's posts

Tags:

More Stories

ALPHV leak site post informing of cybersecurity disclosure complaint filed with SEC against victim, MeridianLink

ALPHV Gang Files Cybersecurity Disclosure Complaint Against Victim, MeridianLink

2 years ago Sohum J Shah
vegas, strip, las vegas-4818097.jpg 2

Vishing Attack Cripples MGM Resorts Operations

2 years ago Sohum J Shah
Picture of listing of PII & PHI stolen in Prospect Medical Holdings Cyberattack

Data from Prospect Medical Cyberattack Appears for Sale on Dark Web

2 years ago Sohum J Shah

Leave a Reply

Your email address will not be published. Required fields are marked *

You may have missed

A tram with an ad for retail giant Victoria's Secret

Victoria’s Secret Cyber Attack Catches Retail Behemoth With Panties Down

4 days ago Sohum J Shah
ALPHV leak site post informing of cybersecurity disclosure complaint filed with SEC against victim, MeridianLink

ALPHV Gang Files Cybersecurity Disclosure Complaint Against Victim, MeridianLink

2 years ago Sohum J Shah
vegas, strip, las vegas-4818097.jpg 2

Vishing Attack Cripples MGM Resorts Operations

2 years ago Sohum J Shah
Picture of listing of PII & PHI stolen in Prospect Medical Holdings Cyberattack

Data from Prospect Medical Cyberattack Appears for Sale on Dark Web

2 years ago Sohum J Shah