Nike Investigates 1.4TB Internal Data Leak by WorldLeaks Extortion Group
In late January 2026, the WorldLeaks extortion group publicly claimed to have stolen and released approximately 1.4 terabytes of Nike's internal data on its leak site. Nike confirmed it is investigating the situation and assessing the scope of the incident. Early analysis of leaked files indicates content such as product designs, manufacturing details, pricing models, and operational documentation, but no customer or employee personal information has been confirmed in the dataset so far.
Signal context
First seen: Jan 27, 2026
Last updated: Jun 20, 2026
Status: Public signal
Key points
- 1.4 terabytes of internal data allegedly stolen and leaked.
- WorldLeaks extortion group claimed responsibility.
- Data includes product designs, manufacturing details, and operational documentation.
Signal analysis
BetaThis analysis groups the signal by industry, likely incident action and impacted security area. It helps compare this signal with other published signals without treating the labels as final determinations.
Sector: Manufacturing
Likely country: Location not provided
The feed marks multiple actor roles. Treat this as a review signal rather than a final attribution.
- Source type: outside the affected organization
- Source type: possible insider or internal misuse
Impact area: Confidentiality
Likely asset: User or customer data
- 1 signal in the same sector
- 31 signals with the same likely impact area
- 1 signal linked to this organization/domain
External sources
Related signals
Grouped by why the signal is relevant.
Kodak Confirms Breach Amid ShinyHunters Leak Threat
Kodak confirmed a data breach on June 18, 2026, after the ShinyHunters group claimed to have stolen 2.2 million records and threatened to leak them.
Madison Square Garden Data Leak by ShinyHunters After Ransom Deadline Missed
The ShinyHunters hacking group published nearly 45GB of allegedly stolen Madison Square Garden (MSG) data, including 26 million customer records, customer support emails, and internal 'Talent' files, after MSG reportedly missed a ransom deadline.
Council of Europe Hacked by ShinyHunters, 297 GB of Data Stolen
The notorious extortion group ShinyHunters claimed to have hacked the Council of Europe, stealing nearly 300 gigabytes of data, including employee personal information, payroll data, CVs, and medical records. The group threatened to leak the data if negotiations were not initiated.
ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273)
The ShinyHunters threat group exploited a zero-day vulnerability (CVE-2026-35273) in Oracle PeopleSoft PeopleTools, a critical remote code execution flaw with a CVSS score of 9.8. The campaign, observed between May 27 and June 9, 2026, targeted over 100 global organizations, with a significant focus on the higher education sector. The vulnerability allowed unauthenticated remote code execution without user interaction. Stolen data from compromised organizations was subsequently published on ShinyHunters' data leak site, and some victims received extortion demands. Oracle released a security advisory on June 10, 2026, after the exploitation was already underway.
U.S. Immigration and Customs Enforcement (ICE) Data Leak
An online database containing sensitive information on U.S. Immigration and Customs Enforcement (ICE) department workers was leaked in January 2026. The incident exposed data on 2,000 agents and 150 supervisors, potentially being the largest breach of department staff information. The database itself experienced a cyberattack on January 13, 2026.
Paywall Bypass Vulnerability
Tweakers.net has identified a vulnerability that allows for the bypass of its paywall. This issue is listed as a 'Known issue' within their bug bounty program, indicating that the company is aware of the flaw and is seeking ethical hackers to report findings related to it. A successful bypass could allow unauthorized access to premium content.