Adidas Confirms Customer Data Was Accessed During Cyber Attack

In a recent development, Adidas has confirmed that customer data was accessed during a cyber attack. The sportswear brand's website revealed the incident in a statement dated 23 May 2025, indicating that an unauthorised external party gained access to "certain consumer data" through a third-party customer service provider used by Adidas.

The company stated that it immediately took steps to contain the incident and launched a comprehensive investigation, collaborating with leading information security experts. The affected data, according to Adidas, does not include passwords, credit card credentials, or any other payment-related information.

"It mainly consists of contact information relating to consumers who had contacted our customer service helpdesk in the past," the company statement continued. "Adidas is in the process of informing potentially affected consumers, as well as appropriate data protection and law enforcement authorities consistent with applicable law."

Recovery Efforts Underway

Adidas has expressed its commitment to protecting consumer privacy and security, stating that it "sincerely regrets any inconvenience or concern caused by this incident." The company is currently working to identify the affected customers and notify them accordingly.

Cyber Attack on British Retail Sector Continues

The recent cyber attack on Adidas has raised concerns about the vulnerability of British retailers. Just over a week ago, Marks & Spencer (M&S) and Co-op also fell victim to hacking attempts, with M&S still recovering from a ransomware attack estimated to cost the firm £300m.

News of these incidents prompted the National Cyber Security Centre (NCSC) to issue an alert in May 2025, warning other retailers that they could be targeted too. The NCSC CEO, Richard Horne, emphasized the need for organisations to take proactive measures to prevent attacks and respond effectively.

The Role of Information Security Experts

"The disruption caused by the recent incidents impacting the retail sector is naturally a cause for concern to those businesses affected, their customers and the public," said NCSC CEO Richard Horne. "The NCSC continues to work closely with organisations that have reported incidents to us to fully understand the nature of these attacks and to provide expert advice to the wider sector based on the threat picture."

"These incidents should act as a wake-up call to all organisations. I urge leaders to follow the advice on the NCSC website to ensure they have appropriate measures in place to help prevent attacks and respond and recover effectively," he added.

Consequences of Cyber Attacks

The recent cyber attacks against British retailers have highlighted the importance of robust cybersecurity measures. The disruption caused by these incidents has significant consequences for affected businesses, their customers, and the public.

The National Cyber Security Centre's (NCSC) expertise and guidance are essential in helping organisations respond effectively to cyber threats and prevent future attacks. It is crucial for businesses to take proactive steps to protect themselves against cyber threats and have a plan in place to respond quickly and efficiently.