Customers of Adidas who have recently made purchases over the company's US website adidas.com/us should watch out. A few days ago, the company announced in a statement that its systems have been breached, and that client data has been exposed to unauthorized access. No details have been provided as to when exactly the breach has taken place, or how long it has lasted, yet Adidas team has become aware of the attack on June 26 this year. Immediately after discovering the issue, the sportswear manufacturer has taken all necessary steps to determine the scope of the attack and has started alerting customers whose data could be at risk.
The company also says it has engaged a leading data security firm, as well as the relevant law enforcement authorities, to work on the issue. Investigations are currently still running, and the full information will be provided after they are complete. For now, it is known that no other websites of the company apart from the US site have been affected by the attack.
From Adidas' official statement, it becomes clear that most of its US customer sensitive data has been exposed, including email and physical addresses, contact information, and login information. Usernames and passwords could have leaked out as well. Passwords have been encrypted though, so it is not known if the hackers will be able to use them. Fortunately, it looks like credit card data and fitness information have been spared from the potential misuse.
Regardless of that, all customers who think that their data could have been compromised, are advised to change their passwords not only for their account at adidas.com/us but also on all other websites or social media where they have used the same login credentials. Just as Twitter was the brunt of a system bug earlier this year, the service instructed its 330 million users to change their password, too. Such a process seems almost commonplace as data breaches and alike are taking place at alarming rates. Unfortunately, we haven't seen the last of data breaches of large companies, which reminds us all to be vigilant and adhere to suggestions from experts.
The exact damage of the Adidas breach is yet to be estimated, but for now, the fact that the passwords have been encrypted gives hope that the attackers may not be able to harm customers significantly, or at least will need some time before they can misuse the stolen information.