Under Armour
HighUnder Armour breached in 2025, exposing 72M records including personal data.
- Records exposed
- 72,742,892 records
- Breach date
- Breach Nov 17, 2025
- Last update
- Updated Jan 21, 2026
What data was exposed?
Fields reported as compromised in this breach record.
Why does this breach matter?
In-depth analysis of the breach and its implications.
In November 2025, the Activewear company Under Armour became a victim of a significant data breach attributed to the Everest ransomware group. The actors claimed to have accessed 343GB of sensitive company data. By January 2026, customer data, including personal identifiable information such as names, email addresses, dates of birth, geographic locations, genders, and purchase details, found its way onto a publicly accessed hacking forum. This instance underscores the critical importance of securing customer data in modern online infrastructures.
Impact Analysis
Understanding the scope and consequences of this breach.
- User Impact
- Exposure of private user data increases risks of identity theft and phishing.
- Business Impact
- Reputational damage, customer trust decline, and potential regulatory consequences.
- Affected Sectors
- Retail
- Online-Commerce
- Geographic Impact
- Global
What You Should Do
Recommended actions to take in response to this breach.
If You Were Affected
- •Monitor email accounts for suspicious activities.
- •Utilize identity theft protection services.
- •Check associated payment accounts for any unusual transactions.
Preventive Measures
- •Ensure strong, unique passwords across platforms.
- •Enable two-factor authentication for critical accounts.
- •Regularly review company privacy practices and data policies.
Frequently Asked Questions
Common questions about this breach and what it means for you.
Attribution
Additional attribution provided with the breach record.
DeHashed