---
schema_version: "secwatch.filing_event.v1"
accession: "0000950123-23-011228"
form_type: "8-K"
ticker: "VFC"
cik: "0000103379"
company_name: "V F CORP"
filed_at: "2023-12-18T23:59:59+00:00"
generated_at: "2026-06-07T11:05:32.135439+00:00"
event_type: "cyber"
sentiment: "negative"
materiality_score: 0.9
calibrated_materiality_score: 0.9
confidence: "high"
source: SEC EDGAR
---

# VF Corp discloses cyberattack with data theft; operations disrupted

## Summary
- Threat actor encrypted IT systems and stole personal data; investigation ongoing with external experts.
- Retail stores open; brand e-commerce sites accepting orders but fulfillment impacted.
- Incident detected Dec 13, 2023; company has notified federal law enforcement.
- Full scope and financial impact not yet determined; material impact on business operations expected.

## SEC filing metadata
- accession: 0000950123-23-011228
- form_type: 8-K
- ticker: VFC
- cik: 0000103379
- company_name: V F CORP
- filed_at: 2023-12-18T23:59:59+00:00
- event_type: cyber
- sentiment: negative
- materiality_score: 0.9
- calibrated_materiality_score: 0.9
- confidence: high
- sec_items: 1.05
- EDGAR index: https://www.sec.gov/Archives/edgar/data/103379/000095012323011228/0000950123-23-011228-index.htm
- EDGAR primary document: https://www.sec.gov/Archives/edgar/data/103379/000095012323011228/d659095d8k.htm

## Machine-readable alternates
- HTML: https://secwatch.observer/filing/0000950123-23-011228
- JSON: https://secwatch.observer/filing/0000950123-23-011228.json
- Plain text: https://secwatch.observer/filing/0000950123-23-011228.txt

## Key facts
- Cybersecurity Incidents
  V F CORP disclosed a cybersecurity incident: Unauthorized occurrences detected on IT systems, threat actor encrypted some IT systems and stole data including personal data. Impact: Has had and is reasonably likely to continue to have a material impact on business operations; not yet determined whether reasonably likely to materially impact financial condition or results of operations. Materiality is still being assessed. Discovered 2023-12-13.
  - Nature: Unauthorized occurrences detected on IT systems, threat actor encrypted some IT systems and stole data including personal data.
  - Impact: Has had and is reasonably likely to continue to have a material impact on business operations; not yet determined whether reasonably likely to materially impact financial condition or results of operations.
  - Materiality: assessing
  - Discovery: 2023-12-13
  source text: The Company has not yet determined whether the incident is reasonably likely to materially impact the Company’s financial condition or results of operations.
  evidence_url: https://www.sec.gov/Archives/edgar/data/103379/000095012323011228/0000950123-23-011228-index.htm

This AI-assisted summary is a reading aid. Review the linked SEC EDGAR filing before relying on any specific claim.