On May 23, 2025, Adidas announced that it had suffered a data breach due to a compromise of a...
Victoria’s Secret disclosed that a cybersecurity breach—detected on May 24, 2025—led to the precautionary shutdown of its U.S. corporate systems and e-commerce site by May 26, keeping it offline for several days apnews.com boston25news.com. The outage disrupted online shopping and in‑store services like returns, frustrating customers during the busy Memorial Day weekend. The company immediately activated incident-response protocols and enlisted third-party cybersecurity experts to contain the threat and restore operations cbsnews.com usnews.com.
While the breach occurred after the first-quarter period ending May 3—and thus didn’t affect reported figures—Victoria’s Secret opted to postpone its quarterly earnings release due to ongoing restoration of internal data and systems (apnews.com boston25news.com). Preliminary results indicate $1.35 billion in net sales and $32 million in adjusted operating income, slightly above analyst expectations. Despite financial performance being intact, the company warned that breach mitigation and recovery efforts may raise second-quarter expenses apnews.com wsj.com.
This incident joins a wave of recent cyberattacks targeting retailers like Adidas, Marks & Spencer, and Cartier. Experts caution that organized cybercriminal groups—possibly including Scattered Spider—are increasingly targeting U.S. retail chains with sophisticated attacks apnews.com newsweek.com fastcompany.com. As a result, consumers are urged to remain vigilant for potential phishing scams or account fraud, while companies are reminded of the importance of swift detection, thorough response, and strong cybersecurity reinforcement.
