Nike Hit by WorldLeaks; 481,183 Users Exposed
Global sportswear giant Nike was hit by an alleged ransomware attack claimed by WorldLeaks, a cybercriminal group focused on data extortion. The group listed Nike on its darknet leak site on Jan. 22, threatening to release stolen data by Jan. 25, 2026, at 6 p.m. GMT. The post drew more than 400 views within hours.
Nike acknowledged awareness of the incident, stating it is investigating and assessing the situation. Preliminary findings point to more than 481,000 compromised user records, including 220 internal and 444 third-party employee credentials. Exposed data reportedly includes internal documents and customer information.
WorldLeaks, a successor to Hunters International, uses an extortion-only strategy pairing stolen data with a robust leak infrastructure. The group often exploits phishing, weak VPNs, or unpatched software. With over 116 victims, including Dell and L3Harris, the group continues targeting the retail sector.
Read the full report at: