As users continue to assess the Under Armour data breach, WorldLeaks, the rebranded version of the Hunters International ransomware group, is claiming to have breached Nike, Inc., a major U.S.-based athletic footwear and apparel company.
The claims were published on the group’s official dark web leak site on Thursday, January 22, 2026. Over the weekend, WorldLeaks updated the post with what it says is supporting evidence, alleging that the attackers exfiltrated more than 1.4 terabytes of Nike data with 188,347 files that are now being leaked online.
It is worth noting that the same group was behind the Dell data breach in July 2025, in which it stole 1.3tb of data and later leaked it online.
The Leaked Data
A quick review of the folder names and files suggests the leaked data is heavily focused on product development, manufacturing, and factory operations. Many directories reference tech packs, schematics, BOMs, graded nests, training materials, wash tests, trim calculators, and size sets. This points to detailed design specifications for apparel and sportswear across multiple seasons, including future collections.
There are also repeated references to factory partners, onsite training, inspections, dashboards, and internal workflows, which likely contain operational documents shared between Nike teams and external manufacturers. In practical terms, this could expose how products are designed, tested, costed, and produced before they ever reach stores.
The files also appear to include internal presentations, strategy documents, artwork, videos, and collaboration materials tied to specific product lines, athletes, teams, and regions. File names reference Jordan, women’s performance wear, training gear, tennis, golf, and federation or league-related apparel, alongside artwork files, embroidery designs, print layouts, and innovation decks.
There are also recordings, PDFs, and spreadsheets that suggest internal meetings, planning sessions, and long-term development roadmaps. While there is no obvious sign of customer payment data in this snapshot, the volume and nature of the material indicate a deep look into Nike’s internal processes, supplier relationships, and unreleased product concepts, information that would normally never be public.
Nike’s Response
Nike responded quickly, stating that it is investigating claims surfaced by WorldLeaks. “We always take consumer privacy and data security very seriously. We are investigating a potential cybersecurity incident and are actively assessing the situation,” the company said.
Hackread.com is monitoring the situation, and this article will be updated as more information becomes available.