All breaches
Under Armour data breach72.7M accounts compromised on 2025-11-17
Verified
Under Armour (underarmour.com) was the source of a data breach dated 2025-11-17, exposing 72,742,892 accounts. The details below are mirrored from Have I Been Pwned and reflect the source's account of the incident at the time of publication.
Incident Report
| Target Organization | Under Armour |
|---|---|
| Source Name | UnderArmour |
| Domain | underarmour.com |
| Breach Date | 2025-11-17 |
| Added to HIBP | 2026-01-21 |
| Last Modified | 2026-01-21 |
| Accounts Compromised | 72,742,892(72.7M) |
| Data Exposed | Dates of birthEmail addressesGendersGeographic locationsNamesPurchases |
| Status | Verified by HIBP |
Description
In November 2025, the Everest ransomware group claimed Under Armour as a victim and attempted to extort a ransom, alleging they had obtained access to 343GB of data. In January 2026, customer data from the incident was published publicly on a popular hacking forum, including 72M email addresses. Many records also contained additional personal information such as names, dates of birth, genders, geographic locations and purchase information.
Disclaimer
HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.