Last updated 1 month ago
Nike, a global retail corporation, is investigating a data breach after the World Leaks ransomware group publicly posted a 1.4TB data dump in February 2026. The breach involved a ransomware attack that resulted in the exfiltration of a significant volume of corporate data, though specific data types within the 1.4TB dump were not detailed in the initial disclosure.
The attack was attributed to the World Leaks ransomware group, which employed ransomware to compromise Nike's systems, leading to data theft. The group's tactics, techniques, and procedures for this specific incident were not elaborated upon beyond the claim of data exfiltration preceding the public leak of the stolen information.
Nike has confirmed it is actively investigating the incident following the public data dump by the threat actor. No further details regarding containment, remediation, regulatory notifications, or potential ransom demands were provided in the initial report.
Ransomware attack leading to data exfiltration
This incident highlights the critical need for robust endpoint detection and response (EDR) capabilities and network segmentation in the retail sector to contain ransomware attacks before large-scale data exfiltration can occur. The 1.4TB data volume suggests a failure to detect or block the lateral movement and data staging activities typically associated with ransomware operations, emphasizing gaps in monitoring for anomalous data transfers.
Sign in to join the discussion.
Company
Industry
Location
Disclosed
Records Affected
Attack Vector
Threat Actor
Threat Actor