Adidas Data Breach claims that a hack using a third-party service resulted in the theft of customer contact information. Payment information and passwords were not stolen.

Adidas has revealed that its customers’ personal information was taken in a cyberattack. According to the sportswear giant, “certain consumer data” that “mainly consists” of the contact details of those who have interacted with its support desk was stolen by crooks. Adidas asserts that passwords and credit card credentials were not compromised in any way.

“We remain fully committed to protecting the privacy and security of our consumers, and sincerely regret any inconvenience or concern caused by this incident,” it wrote on its blog.

It makes sense that Adidas customers would be concerned that hackers may try to use their data, thus it’s critical that Adidas offers precise and timely updates to affected shoppers and supports them in taking steps to protect themselves,” said Lisa Barber, of the consumer advocacy organisation Which?

She suggested that those who may be impacted closely monitor their credit reports and bank accounts for any unusual activity.

They should also be cautious of unexpected calls, emails, or social media posts claiming to be related to the hack, she said, as these could be scammers attempting to profit from the cyberattack.

It comes as significant hacks have attacked retailers like Co-op and Marks & Spencer. There is no evidence that Adidas has experienced a comparable circumstance to theirs, in which the intrusions caused significant disruptions to business operations.

“Adidas recently became aware that an unauthorised external party obtained certain consumer data through a third-party customer service provider,” stated the business.

“We collaborated with leading information security experts as quickly as we could to contain the problem and start a comprehensive investigation.

“Adidas is in the process of informing potentially affected consumers as well as appropriate data protection and law enforcement authorities consistent with applicable law.”  Since April 2025, a number of cyber events have been reported, and some specialists have discovered connections between them.

Police in the UK are investigating the possibility that the M&S cyberattack was caused by Scattered Spider, a well-known group of English-speaking hackers.

Hacks on the Co-op and Harrods are thought to have been carried out by the same group, but M&S was most severely affected.  According to M&S, the company will lose around a third of its profit as a result of the cyberattack.

There is no indication that this group is responsible for the Adidas data hack.  However, the company disclosed earlier this month that data breaches had occurred in other areas of its global empire, including its South Korean and Turkish arms.