Jun 28, 2018

Adidas alerts millions of customers about possible data breach

Adidas logo in white on yellow cloth.

Photo: Daniel Karmann/picture alliance via Getty Images

Adidas announced Thursday that an “unauthorized party” said it gained access to customers' data on its U.S. website, including customer email addresses, physical addresses, usernames, and encrypted passwords, reports Business Insider.

The trend: Several other fitness companies have also experienced their own data breaches. Under Armour announced in March that its fitness app experienced a breach in February, exposing 150 million users’ information. Strava, a fitness tracking app, has also come under fire, with critics arguing it put national security at risk by revealing the data of users’ workout routes, including those near military bases around the world.

The big picture: Connected devices, like fitness apps, represent a risk for the government and the people who use them, the Government Accountability Office assessed. Risks include limited encryption, a limited ability to patch or upgrade devices, and access to third-party information.

What they're saying: Adidas said in a statement it doesn’t have reason to believe that users’ fitness information was affected, per WSJ.

The details: The company was alerted of the breach on June 26, but it's unclear when the breach actually began.

  • Adidas is in the process of notifying affected customers, and said in a statement that it’s working with data security firms to audit what happened.
Go deeper