Victoria’s Secret has temporarily disabled most functionality on its website and limited some in-store services in response to a confirmed cybersecurity incident. The move, described by the company as a precautionary measure, was announced in a statement posted to its website on Wednesday.
Company Confirms Security Breach, Activates Response Protocols
A spokesperson for the Ohio-based retailer told Reuters that immediate action was taken upon discovering the issue.
“We identified and are taking steps to address a security incident,” the spokesperson said. “We immediately enacted our response protocols, third-party experts are engaged, and we took down our website and some in-store services as a precaution.”
The retailer did not disclose further details about the nature or scope of the security breach, nor did it specify when the incident began. While core e-commerce services remain down, Victoria’s Secret and PINK physical stores continue to operate as normal.
Retail Disruption Follows Cybersecurity Issue
Victoria’s Secret, which runs approximately 1,350 retail locations across 70 countries, is still assessing the full impact of the disruption. No timeline has been given for restoration of online services.
The incident has also affected investor sentiment. Shares of Victoria’s Secret & Co. fell about 7% on Wednesday, closing at $20.99.
Enterprise cybersecurity teams across the retail sector are likely to monitor the situation closely, as e-commerce platforms remain frequent targets for cyber threats involving sensitive customer and payment data.