Blog Details

Nike is investigating what it described as a “potential cyber security incident” after the World Leaks ransomware gang leaked 1.4 TB of recordsdata allegedly stolen from the sports clothing enormous.

“We always take consumer privacy and data security very seriously,” the company told BleepingComputer in an e mail statement. “We are investigating a potential cyber security incident and are actively assessing the situation.”

This comes after the extortion neighborhood added Nike to its dark web recordsdata-leak plan, claiming it stole virtually 190,000 recordsdata containing company recordsdata offering info on Nike’s industry operations.

Sooner than this article modified into printed, World Leaks eliminated the Nike entry from its leak, suggesting that it shall be negotiating with the company or that Nike has already paid a ransom to own the allegedly stolen documents eliminated.

On the opposite hand, Nike has but to substantiate the extortion gang’s claims of recordsdata theft, and BleepingComputer might per chance per chance per chance now not independently test whether or no longer the leaked recordsdata contained legitimate recordsdata.

​World Leaks is believed to be a rebrand of the Hunters Global ransomware, following a switch from file encryption to recordsdata theft and extortion-entirely assaults in January 2025, citing concerns that ransomware operations had been turning into too dangerous and had been no longer worthwhile.

Hunters Global emerged in gradual 2023 and modified into itself flagged as a seemingly Hive ransomware rebrand due to the code similarities, after claiming duty for over 280 assaults.

The list of victims entails the U.S. Marshals Provider, the Indian multinational tech enormous Tata Technologies, the Jap optics enormous Hoya, the North American car dealership AutoCanada, and the U.S. Navy contractor Austal USA.

Because it surfaced, World Leaks has furthermore printed recordsdata stolen from dozens of organizations worldwide on its recordsdata leak plan.

In July, World Leaks affiliates had been linked to the breach of 1 in all Dell’s product demonstration platforms and to the exploitation of discontinue-of-lifestyles SonicWall SMA 100 units to install customized OVERSTEP rootkit malware on compromised programs.