Last updated 1 week ago
In November 2025, the Everest ransomware group claimed Under Armour as a victim, alleging they had obtained access to 343GB of data and attempted to extort a ransom. In January 2026, customer data from the incident was published publicly on a popular hacking forum, including 72,742,892 email addresses. Many records also contained additional personal information such as names, dates of birth, genders, geographic locations, and purchase information. The breach represents a significant compromise of customer data for the athletic apparel retailer.
Ransomware attack claimed by Everest ransomware group
The breach highlights the need for robust ransomware protection measures, including regular backups, network segmentation, and endpoint detection and response (EDR) solutions. Organizations should implement multi-factor authentication, encrypt sensitive customer data, and conduct regular security awareness training to prevent initial access. Incident response plans should be tested regularly to ensure rapid containment and recovery in case of a ransomware attack.
Company
Industry
Location
Discovered
Disclosed
Records Affected
Attack Vector
Threat Actor
Continent
Country
Industry
Attack Vector
Threat Actor