Have I Been Pwned reckons 72.7M customer accounts affected, sportswear firm remains silent
January 21, 2026 By Connor Jones
Have I Been Pwned (HIBP) says 72.7 million accounts registered with Under Armour were affected by an alleged ransomware attack in November.
The data breach platform ingested the files that were leaked by a member of the Everest ransomware group on January 18 via a cybercrime forum.
According to HIBP's post from Tuesday, names, email addresses, dates of birth, genders, geographic locations, and details of previous purchases were leaked.
The athletic apparel giant has not yet acknowledged the alleged leak. It didn't respond to our questions when we asked about the attack in November and has yet to respond to our latest calls for comment.
Claims of a ransomware attack emerged when Everest added Under Armour to its leak site two months ago, threatening to release stolen data unless the company paid an undisclosed ransom within seven days.