Adidas Data Breach Exposes Customer Info After Support Vendor Hack
Third-Party Breach Raises Security Concerns, Customer Contact Details Compromised
What Happened?
Adidas, the German sportswear giant, has disclosed a data breach following a cyberattack on one of its third-party customer service providers. The company revealed on May 24 that an unauthorized party gained access to consumer data through the compromised vendor.
In a statement, Adidas confirmed, “We recently became aware that an unauthorized external party obtained certain consumer data through a third-party customer service provider. We immediately took steps to contain the incident and launched a comprehensive investigation with the help of leading cybersecurity experts.”
Although specific technical details are still undisclosed—including the name of the vendor, timeline of detection, and scope of the incident—Adidas emphasized that its own internal systems do not appear to have been compromised.
What Information Did Hackers Steal?
Adidas said the breach did not involve payment data or account passwords. Instead, attackers accessed customer contact information, which may include:
- Names
- Email addresses
- Phone numbers
- Physical addresses
- Birthdates (in some regional cases)
This follows earlier disclosures this month involving data breaches affecting Adidas customers in Turkey and South Korea, tied to individuals who contacted the company’s customer service teams in or before 2024.
How Can Criminals Use the Stolen Data?
While no financial data was exposed, even limited contact information can fuel broader cyber threats:
Targeted Phishing Attacks:
Cybercriminals may use names, emails, and phone numbers to craft deceptive messages that appear to come from Adidas or shipping services.
Identity-Based Scams:
Details such as addresses and birthdates can aid in impersonation efforts or be combined with data from other breaches for fraud.
How Has Adidas Responded?
The company has taken the following steps:
- Contained the breach and cut off unauthorized access
- Launched a full-scale investigation with cybersecurity experts
- Notified affected customers and relevant authorities
- Committed to transparency and consumer data protection
“Adidas is in the process of informing potentially affected consumers, as well as appropriate data protection and law enforcement authorities consistent with applicable law,” the company stated. It also expressed regret for any inconvenience caused and reaffirmed its commitment to consumer privacy.
At this time, Adidas has not disclosed how many individuals were impacted or which countries outside of Turkey and South Korea might be affected.
How OptMsg Helps You Stay Secure
Advanced Email Filtering:
OptMsg blocks phishing and scam emails before they reach your inbox, preventing malicious actors from targeting you with deceptive messages.
Encrypted Messaging:
OptMsg’s encrypted messaging service ensures your sensitive conversations between OptMsg users remain private, protected from unauthorized access.
Privacy by Design:
OptMsg builds privacy into every tool. It does not sell or monetize your data.
What Should You Do If Hackers Compromised Your Data?
- Monitor your email and Adidas account for suspicious activity
- Be cautious of unsolicited messages pretending to be Adidas or delivery companies
- Consider updating security questions or personal details used in online accounts
- Use secure messaging platforms like OptMsg for private communications
Place a fraud alert with credit reporting agencies if concerned about identity misuse
