UNDER Armour is investigating a data breach believed to have occurred late last year that purloined customers’ email addresses and other personal information, though there are no signs that passwords or financial data were stolen. The incident is reported to have affected 72 million email addresses, according to Have I Been Pwned.
In a statement, Under Armour said there is no evidence the issue affected UA[.]com, payment processing systems, or stored customer passwords, and that it is unfounded to suggest sensitive personal information of tens of millions has been compromised. According to Have I Been pwned, the breach’s scale has prompted commentary from its CEO Troy Hunt, who said the company’s lack of an official disclosure statement is unusual given the size and duration of the incident.
The article notes that Have I Been Pwned cited information that has emerged so far, with claims that the breach is being investigated rather than definitively concluded.