Under Armour Faces Massive Data Breach Affecting 72 Million Customers
BALTIMORE, Md. — Under Armour, the global sportswear and fitness brand, is investigating a significant data breach that has potentially compromised the personal information of approximately 72 million customers. The breach surfaced publicly in January 2026 after hackers posted stolen customer records on a popular hacking forum, triggering alerts to millions of users.
The incident traces back to a ransomware attack in November 2025, when the Everest ransomware group claimed responsibility and attempted to extort the company by threatening to leak internal files. Although Under Armour has confirmed the ongoing investigation, cybersecurity experts analyzing the leaked data have identified personal details linked to customer purchases, including email addresses and other sensitive information.
The breach notification service Have I Been Pwned obtained a copy of the stolen dataset and promptly notified affected users via email. This service, widely recognized for tracking data breaches, confirmed that the dataset contains email addresses associated with roughly 72 million individuals, marking one of the largest exposures in recent years.
Cybersecurity specialists warn that the scale and nature of the data exposed could lead to significant risks, including identity theft and phishing attacks. The breach underscores ongoing challenges companies face in protecting consumer data, especially in the wake of increasingly sophisticated ransomware operations. The Cybersecurity and Infrastructure Security Agency has issued guidelines urging consumers to remain vigilant and update their credentials where necessary.
Under Armour has not disclosed the full extent of the compromised data but acknowledged the breach in a statement, emphasizing its commitment to protecting customer information and cooperating with law enforcement. The company is reportedly enhancing its cybersecurity measures to prevent future incidents.
Experts recommend that affected customers monitor their financial accounts closely and consider enrolling in credit monitoring services. The Federal Trade Commission advises consumers to be cautious of unsolicited communications and to report suspicious activity promptly.
This incident follows a growing trend of ransomware attacks targeting major corporations, highlighting the critical need for robust cybersecurity defenses and rapid response protocols. The Federal Bureau of Investigation continues to investigate the attack and is working with Under Armour and other agencies to identify and apprehend those responsible.
As the investigation unfolds, millions of Under Armour customers are urged to take proactive steps to secure their personal information and stay informed through official channels.
Leave a Reply