476/68 Wednesday, November 19, 2025
The Everest ransomware group claims to have breached the systems of Under Armour, Inc., a major U.S. sportswear company, stealing over 343 GB of internal corporate data, including personal information belonging to millions of customers across multiple countries. The attackers published sample data on their Dark Web site to prove the breach.
The stolen data reportedly includes email addresses, phone numbers, purchase histories, location information, and marketing campaign records—revealing both commercial details and customer behavior patterns. Everest has issued an ultimatum, demanding that Under Armour contact them via Tox Messenger within seven days, or the group will release all stolen data, following the same extortion tactics used in their previous attacks.
As Under Armour has not yet confirmed the breach, experts recommend that customers take precautionary steps, including monitoring their accounts for suspicious activity, changing passwords, enabling two-factor authentication (2FA), and being cautious of phishing emails that may impersonate Under Armour to exploit concerns about the alleged data leak.
Source https://hackread.com/everest-ransomware-under-armour-users-data/
