Investigation Initiated
Under Armour is currently investigating claims of a data breach. A cybercriminal posted millions of customer records on a hacker forum, alleging the data was obtained in November. The Everest ransomware gang had previously claimed responsibility for a breach at that time.
Data Compromise Details
The breach notification service Have I Been Pwned obtained a copy of the alleged stolen data and notified 72 million individuals via email about potential compromise. The dataset reportedly includes customer names, email addresses, genders, dates of birth, approximate location (based on postcode/ZIP code), and purchase-related information. A sample of the data, provided to TechCrunch by the seller, appeared to corroborate these details and also included email addresses of Under Armour employees.
Company Response
Under Armour spokesperson Matt Dornic confirmed the company is "aware of claims that an unauthorized third party obtained certain data." An ongoing investigation, supported by external cybersecurity experts, is underway. The company states there is no current evidence to suggest that UA.com, payment processing systems, or customer password storage were affected. Dornic also commented that "a very small percentage" of affected customers had information that could be considered "sensitive" compromised. The spokesperson did not specify what constitutes "sensitive" information or provide an exact figure for affected customers. Under Armour has stated that implications of sensitive personal information of tens of millions of customers being compromised are unfounded. The company has not yet commented on whether it plans to notify affected customers or if it has received any communication from the alleged hackers, such as a ransom demand.