ESET Ireland Warns of Scam Risk After Alleged Under Armour Data Breach

Cybersecurity experts are urging consumers to be vigilant for follow-up scams after an alleged data leak affecting millions of Under Armour accounts appeared online.

Breach notification service Have I Been Pwned has listed an incident affecting 72.7 million Under Armour accounts. The service reports the data was allegedly stolen in November 2025 and later posted online by a member of the Everest ransomware group.

The exposed information may include names, email addresses, dates of birth, gender, geographic location, and details linked to previous purchases.

George Foley, ESET Ireland security spokesperson:

"When a well-known consumer brand is linked to a major leak, criminals move fast. They do not stop at the data that was taken. They use it to create believable follow up emails, texts and even phone calls that look like they are coming from the company involved. The aim is to trick people into handing over more information, clicking a link, resetting a password through a fake page, or sharing payment details."

ESET Ireland said consumers should treat any unexpected message claiming to be from Under Armour as suspicious until proven otherwise. This includes messages referencing account issues, delivery problems, refunds, loyalty points, or "security verification" requests.

Foley added:

"If you get a message that pressures you to act quickly, that is a red flag. Go directly to the company's official website or app yourself, rather than using links in messages. And if you reused the same password anywhere else, change those accounts first. Password reuse turns one leak into several compromises."

ESET Ireland advises consumers to review their password hygiene, enable multi-factor authentication where available, and be cautious about calls or texts that reference personal details. The company warns that phishing attempts may appear highly personalised, using known data points to sound credible.

For more information, visit ESET Ireland.