Fast Facts
- Adidas is investigating a potential data breach after a threat actor associated with “LAPSUS-GROUP” claimed to have exfiltrated approximately 815,000 rows of data from its extranet portal, involving personal and technical information of partners and employees.
- The stolen data reportedly includes names, emails, passwords, birthdays, and company details, with indications that a larger 420GB dataset related to the French market may be involved.
- Adidas confirmed the breach affects a third-party licensing partner, clarifying that its own IT systems, e-commerce platforms, and consumer data remain unaffected.
- The incident follows a prior third-party breach in 2025, highlighting ongoing risks from supply chain vulnerabilities, with experts urging stricter access controls and regular security audits for partner portals.
What’s the Problem?
Adidas is currently investigating a serious data breach involving one of its third-party partners. The incident came to light after the threat group “LAPSUS-GROUP,” believed to be linked with the Scattered Lapsus$ Hunters, claimed on BreachForums on February 16, 2026, that they had accessed and stolen sensitive data. The attacker reported exfiltrating around 815,000 rows of data from Adidas’ extranet portal, which is used by authorized partners such as suppliers and retailers to communicate with the company. The stolen data reportedly includes personal details like names, email addresses, passwords, birthdays, and technical information. The group also hinted at a larger data dump—up to 420GB related to France—and warned that “something bigger is coming,” raising concerns about broader security breaches.
Adidas confirmed that it was aware of the incident, emphasizing that the breach involved an independent licensing partner, not Adidas’s core IT infrastructure or customer-facing platforms. The company clarified that no internal consumer or e-commerce data was compromised and that the incident appears isolated to a third-party system. This recent breach follows an earlier incident in May 2025, when a customer service provider’s systems were also compromised, exposing customer contact details. Such recurring breaches highlight ongoing vulnerabilities in Adidas’ supply chain security and vendor management, prompting security experts to call for stricter access controls, multi-factor authentication, and regular security audits to prevent future incidents.
Critical Concerns
The recent Adidas data breach highlights how such incidents can directly impact any business, including yours. When hackers steal customer data—like addresses, emails, or payment info—the damage can be severe. Customers lose trust, leading to reputational harm and potential revenue loss. Moreover, legal penalties and regulatory fines may follow, increasing costs. As cybercriminals grow more sophisticated, the risk of a breach rises, making cybersecurity essential. Therefore, neglecting protection measures can turn a manageable issue into a substantial crisis, emphasizing the importance of proactive defenses to safeguard your business and maintain customer confidence.
Fix & Mitigation
In today’s fast-paced digital landscape, swiftly addressing a data breach is crucial to minimize damage, restore trust, and comply with regulatory standards. Prompt remediation not only curtails the window of exploitation but also demonstrates a commitment to safeguarding customer information, which is vital for maintaining business credibility and legal standing.
Containment Strategies
Immediate isolation of affected systems to prevent further data exfiltration.
Assessment Procedures
Conduct comprehensive forensic analysis to identify breach scope and entry points.
Communication Plan
Notify stakeholders, customers, and regulators in a transparent manner according to legal obligations.
Evidence Collection
Secure logs, impacted data, and forensic evidence to support investigations and compliance.
Patch and Update
Apply security patches, update software, and close vulnerabilities exploited during the breach.
Enhanced Monitoring
Implement real-time detection and continuous monitoring to identify suspicious activities.
Access Controls
Review and restrict user access privileges to limit insider threats and lateral movement.
Password Reset
Force password changes and enable multi-factor authentication across all affected accounts.
User Support
Establish support channels to assist impacted customers and address concerns.
Policy Revision
Update security policies and incident response plans based on new insights to prevent future incidents.
Continue Your Cyber Journey
Stay informed on the latest Threat Intelligence and Cyberattacks.
Access world-class cyber research and guidance from IEEE.
Disclaimer: The information provided may not always be accurate or up to date. Please do your own research, as the cybersecurity landscape evolves rapidly. Intended for secondary references purposes only.
Cyberattacks-V1cyberattack-v1-multisource
