Under Armour Confirms Data Breach Investigation
▼ Summary
– Under Armour is investigating a data breach after 72 million alleged customer records were posted online by a cybercriminal group.
– The Everest ransomware group claimed responsibility for the November 2025 breach, which involved 343GB of data that was later published on a hacking forum.
– The compromised data includes personal information like names, dates of birth, genders, locations, and purchase details, but payment card data was not specifically mentioned.
– Additional leaked information may include phone numbers, addresses, browsing behavior, and some employee contact details.
– Under Armour states there is no evidence the breach affected payment systems or customer passwords, and it is working with cybersecurity experts on the investigation.
Under Armour has launched a formal investigation following the online publication of what appears to be 72 million customer records by a cybercriminal organization. The athletic apparel company is working with external cybersecurity specialists to verify the claims and assess the potential impact. Initial reports trace the alleged breach to late 2025, when the Everest ransomware group listed Under Armour as a victim, asserting they had accessed 343 gigabytes of company data.
The situation escalated in mid-January 2026 when information purportedly from the incident appeared on a well-known hacking forum. The data trove is reported to contain a massive cache of email addresses. According to data breach monitoring services, the leaked information extends to names, dates of birth, genders, geographic locations, and detailed purchase histories. Additional unverified reports suggest phone numbers, physical addresses, website browsing behavior, and certain employee contact details may also be part of the leak.
A company representative emphasized that their investigation is ongoing. They stated there is currently no evidence that the breach impacted their primary e-commerce platform, UA.com, or any systems responsible for handling payment card details or storing customer passwords. The spokesperson directly challenged the scale of the reported compromise, calling implications of widespread sensitive data exposure “unfounded.”
Under Armour reiterated that protecting system and data security remains a critical priority, and they are treating the matter with the utmost seriousness. The firm continues to analyze the claims while urging customers to monitor their accounts for any unusual activity.
(Source: InfoSecurity Magazine)
