**Under Armour Data Breach Triggers Alerts for Millions of Users**

In a shocking turn of events, sportswear and fitness brand Under Armour is investigating claims of a massive data breach after customer records were posted on a hacker forum. The breach became widely known after millions of people received alerts warning their information may have been compromised.

While Under Armour says its investigation is ongoing, cybersecurity researchers reviewing the leaked data say it appears to include personal details potentially linked to customer purchases. According to breach notification service Have I Been Pwned, the dataset contains email addresses linked to approximately 72 million people, prompting the organization to notify affected users directly.

The scale of the exposure has raised new concerns about how consumer data can be misused long after a breach occurs. "We are aware of claims that an unauthorized third party obtained certain data," an Under Armour spokesperson told CyberGuy. "Our investigation of this issue, with the assistance of external cybersecurity experts, is ongoing." However, they emphasized that there's no evidence to suggest this issue affected UA.com or systems used to process payments or store customer passwords.

But even without payment details, the exposed data still poses serious risks. Names, email addresses, birth dates, and purchase history can be used to create highly convincing scams. Cybercriminals often reference real purchases or account details to gain trust. As a result, phishing emails tied to this breach may appear legitimate and urgent.

**What Happened in the Under Armour Data Breach?**

The stolen data is reportedly linked to a ransomware attack that occurred in November 2025. At the time, the Everest ransomware group claimed responsibility and attempted to extort Under Armour by threatening to leak internal files. In January 2026, customer data from that incident appeared publicly on a popular hacking forum.

Soon after, breach notification service Have I Been Pwned obtained a copy of the data and alerted affected users by email. According to reports, the seller claimed the stolen files came directly from the November breach and included millions of customer records.

**How to Stay Safe After the Under Armour Data Breach**

If you received a breach alert or believe your information may be included, taking action now can reduce your risk later. Here are some steps to follow:

  1. Change reused passwords and use a password manager: If you reused the same password on other sites, change those passwords right away. A password manager makes this easier by creating strong, unique passwords for each account.
  2. Watch for phishing emails tied to Under Armour: Cybercriminals often move fast after a breach. Be cautious of messages that claim there is an issue with your account or a recent purchase.
  3. Turn on two-factor authentication everywhere you can: Two-factor authentication adds an extra layer of protection, making it harder for attackers to log in even if they have your password.
  4. Monitor for password reset attempts and account alerts: After a breach, attackers often test stolen email addresses across multiple sites. Pay close attention to these alerts and secure the account immediately by changing the password.
  5. Be skeptical of messages that reference past purchases: Attackers may reference real products or order details to earn your trust. Treat any message that pressures you to act quickly as suspicious.
  6. Reduce your exposure with a data removal service: A data removal service can help you request the deletion of your information from databases used by scammers for targeting.

**Conclusion**

The Under Armour data breach is a reminder that even major global brands can become targets. While payment systems appear unaffected, the exposure of personal data still creates long-term risks for millions of customers. Data breaches often unfold over time, and what starts as leaked records can later fuel scams, identity theft, and targeted attacks.

Staying alert now can reduce the chance of bigger problems later. If your personal shopping or fitness data were exposed in a breach like this, would you keep using the brand or move on to a competitor? Let us know by writing to us at Cyberguy.com.

**Get a Free Scan to Find Out if Your Personal Information is Already Out on the Web**

Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com. Get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.

**Stay Informed with CyberGuy**

Get my best tech tips, urgent security alerts, and exclusive deals delivered straight to your inbox. Sign up for my FREE CyberGuy Report today!