Menu
Browse

J.Crew

Primary URL Location Industry
jcrew[.]com
Country United States of America
Retail Icon
Retail
Profile

J.Crew operates as a clothing retailer that offers apparel and accessories through both physical stores and an online commerce platform. The company is headquartered in the United States of America. Its product assortment includes items such as tops, bottoms, outerwear, and related accessories aimed at consumers seeking casual and everyday wear. J.Crew serves customers primarily within the United States, as evidenced by the geographic scope of its disclosed security incident.

In April 2019, J.Crew experienced a credential stuffing attack in which an unauthorized party gained access to customer accounts by using previously exposed username and password combinations. The intrusion allowed the attacker to view stored payment card information, including card type, last four digits, expiration date, billing address, as well as order numbers and shipping details. The company detected the breach through routine web scanning activities and subsequently notified the affected individuals. Fewer than ten thousand U.S. customers were impacted by the incident.

Following the discovery, J.Crew took steps to secure the compromised accounts and advised customers to monitor their payment card statements for any unauthorized activity. The incident highlighted the retailer’s reliance on credential-based authentication for its online services and underscored the importance of monitoring for credential reuse attacks. No further details about the company’s size, annual revenue, or store count are provided in the available sources. The available information does not disclose J.Crew’s ownership structure or any parent‑subsidiary relationships.

Incidents
Linked incidents available to members
1 incident