Victoria's Secret Faces Board Purge

Barington Capital CEO James Mitarotonda released his scathing letter to Donna James, Victoria's Secret board chair, calling for a leadership overhaul and foreshadowing an intense activist investor fight. The shareholder-meeting-timed missive details and derides the niche retailer's adrift strategy, stark underperformance and lax governance.
Mitarotonda's correct and his letter provides a template on serious stewardship.
And it's not the first time Victoria's Secret seized headlines in recent weeks. Last month, the company announced a cybersecurity incident which both shuttered ecommerce operations for two days and delayed its earnings call. That turmoil signals deeper lax governance concerns and danger for the new CFO.
Not surprisingly, its 2025 proxy statement reveals the toxic governance triumvirate – incentives, incompetence and indifference – that lures troublesome attention from both hackers and activists. Quietly, that latent predicament is hardly isolated nor unique.
The Barington Capital letter first lauds Victoria's Secret as 'one of the most recognized and iconic brands in the world, with tremendous visibility, consumer awareness and brand equity' but then warns has 'failed to live up to its potential since its separation from L Brands.' Since June 2021, the retailer's shares are down 57%, denting valuation by over $2.4 billion. Conversely, over the same time, a passive S&P 500 index investment returned over 42%. Such painful deficits secretly worry boards.
Beyond offering strategic and operational prioritization advice, Mitarotonda's larger aims are to derail 'rubber-stamped' director re-appointments and chastise a recent 'poison pill' adoption. Both further entrench senior leadership.
The combination is concerning, especially as the activist investor also points out, 'recent systems failures recent system failures raise fundamental questions regarding the Board's oversight of risk management and internal controls.'
Little should be a surprise after a closer look at the proxy statement.
Each director hauled in over $240,000 each last year in cash and stock compensation in 2024, with board chair James drawing over $430,000. James' re-appointment would bring her to over a quarter-century in the company's boardroom, including her time from 2003 through 2021 with Victoria's Secret's former parent company, L Brands.
Her biography says she's 'not afraid to ask tough questions and challenge management's strategies and assumptions. She engages regularly with the investor community and is a valued sounding board for the CEO and other members of the executive leadership team.' Those core competencies and extensive insider knowledge will be tested with the looming activist investor row, cybersecurity investigation, resultant remediation plans and likely shareholder litigation.
The proxy statement paints cybersecurity as a compliance exercise.
The named executive officers do not include a senior technology executive and none is listed on the company website. It's quite likely that the CIO or CTO reports either to the chief operating or financial officer. Technology leaders who report to the CEO are more likely to have greater sway in vital digital era strategic and operational decisions.
The board splits into three committees (audit, nominating and compensation), with no technology focus. Each director is categorized as 'expert, knowledgeable or familiar' across fifteen skill dimensions. None is characterized as expert in cybersecurity and six score only as familiar.
Directors Sarah Davis, Irene Chang Britt, Lauren Peters and James form the audit committee, which oversees cybersecurity. Davis, former CEO of Canadian grocery and pharmacy giant Loblaw, also worked as the retailer's CFO, but lacks any formal IT experience. Chang Britt is a past Campbell Soup divisional president, heading Pepperidge Farm. Her biography indicates, "she has deep experience in business transformation and is an expert in human capital management, branding, and marketing' – but, no public accounting nor IT experience. Peters, Foot Locker's former CFO, also serves on the board of Allegion, a 'leading security products and solutions providers' which makes and services locks and biometric devices – not cybersecurity.
Not surprisingly, the company reverts to boilerplate language in its perfunctory SEC filings. Tucked deep in its 2025 Q1 filing was this dismissal, "We continue to assess the full scope and impact of the incident. This incident has not caused a material disruption to our operations to date and we do not believe it will have a material impact to our fiscal year 2025. The investigation remains ongoing and we have incurred, and may continue to incur, expenses and other financial impacts related to this incident, which could negatively impact our future financial results.'
Lax governance undermines readiness, responsiveness and resilience. When crises occur, poor stewardship only further distracts struggling and overwhelmed c-suites.
Stock performance, regulatory reporting and fiscal management all converge at the CFO's desk. This month, Scott Sekella replaces retiring finance head Timothy Johnson. Sekella is no stranger to c-suite controversy, but even he must be puzzled by the future.
He worked his way up the FP&A ranks at Under Armour and was deposed in the litigation that led to the apparel maker's notorious $434 million settlement related to aggressive revenue reporting. His most recent position as now-bankrupt Joann Fabrics' CFO ended abruptly last summer after less than two years, requiring forfeiture of a $400,000 retention bonus.
Sekella now takes over an organization which missed its Q1 earnings date because financial records resided on the same compromised servers as retail sales. That necessary disentanglement is a goliath, nightmarish finance-IT-audit project which will require extensive cross-functional collaboration and hefty bills.
Others openly question, despite the nature of its product line, why pictures of scantily-clad models oddly adorn the pages of regulatory filings. Will a new CFO have the courage to boldly curb incessant branding?
All that adds to questions swirling about Victoria's Secret's CEO Hilary Super, who Mitarotonda criticized as someone with 'limited chief executive and public company experience, only a brief tenure in intimate apparel and does not appear to have gained the confidence of employees.' With an $8 million compensation package that incandescently towers at 880 times the median Victoria's Secret employee, Super is bound for scrutiny. Such spillover naturally spotlights all c-suite pay and performance.
That's a tough spot for any new CFO -- let alone one ballyhooed in a hiring press release as 'transformational leader with extensive and diverse retail experience delivering results, driving operational efficiencies, and executing growth strategies. He has a strong retail background and record of identifying and accelerating strategies that strengthen performance and enhance profitability which I believe make him the right partner to help lead the next chapter of growth for the company.' Peers take note.
Whatever the boardroom battle royale's outcome, insiders and outsiders should watch the drivers of digital era dominance, danger or discord closely. Who's poisonous?

Try Our AI Features

Explore what Daily8 AI can do for you:

Learn with AIFact CheckingText to SpeechAI Summary

Related Articles

Yahoo

10 minutes ago

• Yahoo

Scholar Rock (SRRK) Jumps 16.6% After Successful Weight Loss Drug Trial

We recently published a list of These 10 Stocks Boast Double-Digit Gains Amid Boring Market. Scholar Rock Holding Corporation (NASDAQ:SRRK) is one of the best-performing stocks on Thursday. Scholar Rock jumped by 16.6 percent on Wednesday to close at $36.32 apiece as investor sentiment was bolstered by the positive results from the second phase of its weight loss drug trial. In a statement, Scholar Rock Holding Corporation (NASDAQ:SRRK) said the trial, which aims to assess its drug candidate apitegromab's combination with tirzepatide, was generally well tolerated, leading to higher quality weight loss as compared with taking tirzepatide alone. According to Scholar Rock Holding Corporation (NASDAQ:SRRK), apitegromab therapy in combination with tirzepatide resulted in the preservation of 4.2 pounds of lean mass compared with tirzepatide alone. 'While this is an exciting development for our platform, we remain focused on preparing for the launch of apitegromab, and following its potential approval in SMA, we look forward to studying it in a range of neuromuscular diseases with high unmet need,' said Scholar Rock Holding Corporation (NASDAQ:SRRK) President and CEO Akshay Vaishnaw, adding that he was looking forward to exploring its potential in various rare, severe debilitating neuromuscular disorders. A scientist holding a flask of liquid in a laboratory, highlighting the research and discoveries of new treatments. 'We remain on track to file an IND application for SRK-439 in the second half of this year to support the first in human study,' he said. While we acknowledge the potential of SRRK as an investment, our conviction lies in the belief that some AI stocks hold greater promise for delivering higher returns and have limited downside risk. If you are looking for an extremely cheap AI stock that is also a major beneficiary of Trump tariffs and onshoring, see our free report on the best short-term AI stock. READ NEXT: 20 Best AI Stocks To Buy Now and 30 Best Stocks to Buy Now According to Billionaires. Disclosure: None. This article is originally published at Insider Monkey. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data

Wall Street Journal

13 minutes ago

• Wall Street Journal

Trump Says He's Nearing a Possible Deal With Harvard

President Trump said his administration was 'working closely' with Harvard University and could announce a deal within the next week. The White House and Harvard have been locked in battle since late March. Trump has pulled billions in federal funds over antisemitism and DEI concerns, tried to block Harvard's ability to enroll international students and threatened its tax-exempt status. Harvard has sued the administration, saying the government has violated its First Amendment rights.

Associated Press

15 minutes ago

• Associated Press

HackerNoon Publishes: Business Pros Underestimate AI Risks Compared to Tech Teams, Social Links Study Shows

New York, United States, June 20, 2025 -- HackerNoon, the independent tech publishing platform, published thefollowing release today. Text below: A new study from Social Links, a leader in open-source intelligence solutions, reveals a gap between business and technical professionals when it comes to recognizing the risks posed by AI-powered cyberattacks. Despite the rapid rise in threat sophistication, business respondents appear significantly less concerned thаn their tech colleagues. This fact highlights a potential blind spot in organizational preparedness. The survey gathered insights from 237 professionals (from CEO and Technical C-level to Cybersecurity Specialists and Product Managers) across various industries, including Financial Services, Technology, Manufacturing, Retail, Healthcare, Logistics, Government, etc. The results showed that just 27.8% of business people (professionals in non-technical, business-oriented roles) identified usage of AI to generate fake messages as one of the most relevant cyber threats. In contrast, 53.3% of technical professionals flagged it as a top concern—nearly double the level of alarm. A similar pattern emerged around deepfake technology: 46.7% of technical staff expressed concern, compared to just 27.8% of business respondents. This gap underscores a critical vulnerability in organizational security: business professionals, who often make prime targets for sophisticated AI-driven social engineering and deepfake schemes, show notably lower levels of concern or awareness about these threats. At the same time, the most vulnerable departments for cyber threats identified by respondents were Finance and Accounting (24.1%), IT and Development (21.5%), HR and Recruitment (15.2%), and Sales and Account Manаgement (13.9%). 'This is no longer a question of 'if'—AI-powered threats are already here and evolving quickly,' says Ivan Shkvarun, CEO of Social Links. 'We're seeing a clear gap between those building defenses and those most likely to be targeted. Bridging that gap requires not just better technical tools, but broader awareness and education across all levels of an organization.' Key Insights from the Research: Traditional vs. AI-Driven Threats: While phishing and email fraud remain the most cited threats (69.6%), followed by malware/ransomware (49.4%), AI-driven attacks are gaining ground. 39.2% of respondents identified the use of AI to craft fake messages and campaigns as a major concern, and 32.9% pointed to deepfakes and synthetic identities—confirming that generative technologies are now a recognized part of the corporate threat landscape. 'Traditional threats like phishing and malware still dominate the charts. But what we're seeing now is that AI isn't replacing these risks, it's supercharging them, turning generic scams into tailored operations—fast, cheap, and more convincing. That's the real shift: automation and personalization at scale,' explains Ivan. Employee Footprint Risk: 60.8% of respondents report that employees use corporate accounts for personal purposes—such as posting on forums, engaging on social media, or updating public profiles. 59.5% also link publicly available employee data (e.g., LinkedIn bios, activities in forums and blogs) to real cyber incidents, identifying it as a recurring entry point for attacks. Unregulated AI Adoption: Over 82% of companies let employees use AI tools at work, yet only 36.7% have a formal policy that controls how those tools are used. This gap fuels 'Shadow AI'—the unsanctioned adoption of chatbots, code assistants, or other AI services without IT oversight, which can leak sensitive data and create hidden security and compliance risks. 'You can't really stop people from using work accounts or data when they're active online. The same goes for AI tools: people will use them to save time or get help with tasks, whether there's a policy or not. But all this activity leaves digital traces. And those traces can make it easier for scammers to find and target employees. What actually helps is teaching people how to spot the risks and giving them the right tools to stay safe, instead of just saying 'don't do it,'' explains Ivan. The research emphasizes that effective cybersecurity in the AI era requires a holistic approach that extends beyond technical controls to include comprehensive human-centric security programs. Employee training on safe AI use was overwhelmingly perceived by survey respondents as the most effective mitigation measure for 'Shadow AI' (72.2%), followed by the development of internal policies (46.8%). Social Links is committed to addressing these evolving challenges and has recently launched the Darkside AI initiative, aimed at further exploring and mitigating the risks posed by advanced AI-driven threats. About Social Links Social Links is a global provider of open-source intelligence (OSINT) solutions, recognized as an industry leader by Frost & Sullivan. Headquartered in the United States, the company also has an office in the Netherlands. Social Links brings together data from over 500 open sources covering social media, messengers, blockchains, and the Dark Web, enabling users to visualize and analyze a comprehensive informational picture and streamline investigations. Its solutions support essential processes across various sectors, including law enforcement, national security, cybersecurity, due diligence, banking, and more. Companies from the S&P 500 and public organizations in over 80 countries rely on Social Links products every day. Contacts Email: [email protected] Website: Social Links About the company: How hackers start their afternoons. HackerNoon is built for technologists to read, write, and publish. We are an open and international community of 35k+ contributing writers publishing stories and expertise for 4M+ curious and insightful monthly readers. Founded in 2016, HackerNoon is an independent technology publishing platform run by David Smooke and Linh Dao Smooke. Start blogging about technology today. Contact Info: Name: Sheharyar Khan Email: Send Email Organization: HackerNoon Website: Release ID: 89162808 In case of identifying any errors, concerns, or inconsistencies within the content shared in this press release that necessitate action or if you require assistance with a press release takedown, we strongly urge you to notify us promptly by contacting [email protected] (it is important to note that this email is the authorized channel for such matters, sending multiple emails to multiple addresses does not necessarily help expedite your request). Our expert team is committed to addressing your concerns within 8 hours by taking necessary actions diligently to rectify any identified issues or supporting you with the removal process. Delivering accurate and reliable information remains our top priority.