Overview

• Attackers infiltrated a third-party customer service provider and accessed names, email addresses and phone numbers of customers who had contacted support
• Adidas confirmed that no payment information or passwords were compromised in the incident
• The company has notified impacted users and reported the breach to data protection regulators and law enforcement as required
• Adidas has not disclosed the total number of affected customers or broken down the impact by region
• The breach highlights growing cybersecurity risks in vendor networks and has prompted Adidas to bolster its third-party security protocols