Public breachBreachXposedOrNot· 1 Nov 2025

UnderArmour

Domain: underarmour.com

What happened

Under Armour, an American sportswear and athletic apparel brand, was claimed as a victim by the Everest ransomware group in November 2025 in an attempted extortion alleging access to 343GB of data. Customer data from the incident was later published publicly in January 2026, exposing 73M email addresses. Many records also contained additional personal information such as names, dates of birth, genders, geographic locations and purchase information.

Breach facts

Records exposed: 73,065,604
Sensitive: No
Industry: Retail
Data exposed: Email addressesNamesGendersGeographic locationsDates of birth

Check my email →← All breaches

This page summarises publicly reported breach metadata for awareness. For account recovery or incident response, use the official guidance from the affected service.

Breach data provided by XposedOrNot.