VulnHub

Real-time Cybersecurity News

Nike Data Breach Claims Surface as WorldLeaks Leaks 1.4TB of Files Online

Hackread – Cybersecurity News, Data Breaches, AI, and More
Actively Exploited
Data Breach

Overview

A significant data breach involving Nike has come to light, with the hacking group WorldLeaks leaking approximately 1.4 terabytes of sensitive files online. This leak reportedly includes internal documents, customer data, and other confidential information. The breach appears to coincide with ongoing concerns about data security at various companies, including Under Armour. With the scale of the leak, there are serious implications for Nike's customers and partners, as their personal information may be at risk. Companies like Nike must enhance their cybersecurity measures to prevent such incidents and protect their users' data.

Key Takeaways

  • Active Exploitation: This vulnerability is being actively exploited by attackers. Immediate action is recommended.
  • Affected Systems: Nike customer data, internal Nike documents
  • Action Required: Companies should assess their security protocols and enhance data protection measures.
  • Timeline: Newly disclosed

Original Article Summary

As users continue to assess the Under Armour data breach, WorldLeaks, the rebranded version of the Hunters International…

Impact

Nike customer data, internal Nike documents

Exploitation Status

This vulnerability is confirmed to be actively exploited by attackers in real-world attacks. Organizations should prioritize patching or implementing workarounds immediately.

Timeline

Newly disclosed

Remediation

Companies should assess their security protocols and enhance data protection measures.

Additional Information

This threat intelligence is aggregated from trusted cybersecurity sources. For the most up-to-date information, technical details, and official vendor guidance, please refer to the original article linked below.

Related Topics: This incident relates to Data Breach.

Read Original Article

Related Coverage

12-year-old Pack2TheRoot bug lets Linux users gain root privileges

Security Affairs

A vulnerability known as 'Pack2TheRoot,' tracked as CVE-2026-41651, has been identified in Linux systems, allowing local users to gain root privileges without authorization. This flaw has existed for nearly 12 years and has been rated with a high severity score of 8.8. It enables unprivileged users to install or remove system packages, which could lead to complete control over the system. This issue affects any Linux distribution that utilizes PackageKit, making it a significant concern for users and administrators alike. Given the potential for exploitation, it is crucial for affected parties to take immediate action to secure their systems.

Apr 24, 2026

New BlackFile extortion group linked to surge of vishing attacks

BleepingComputer

A new hacking group known as BlackFile has emerged, targeting retail and hospitality organizations since February 2026. This group is primarily focused on data theft and extortion, escalating the risk for businesses in these sectors. Researchers found that BlackFile's tactics include vishing attacks, where attackers use phone calls to manipulate victims into revealing sensitive information. The implications of this surge are significant, as it not only threatens the financial stability of affected companies but also jeopardizes customer data and trust. As organizations in retail and hospitality deal with these threats, they need to enhance their security measures and employee training to mitigate the risks associated with such attacks.

Apr 24, 2026

New ‘Pack2TheRoot’ flaw gives hackers root Linux access

BleepingComputer

A newly discovered vulnerability known as Pack2TheRoot poses a significant risk to Linux systems by allowing local users to gain root access through the PackageKit daemon. This flaw enables unauthorized users to install or remove system packages, potentially compromising the integrity of the system. The vulnerability could be exploited by anyone with local access to a vulnerable Linux machine, making it a concern for both individual users and organizations that rely on Linux environments. As the flaw can lead to full control over the system, it is crucial for affected users to take immediate action to mitigate risks and secure their systems. Researchers are urging users to monitor their systems closely until a patch is available.

Apr 24, 2026

US Busts Myanmar Ring Targeting US Citizens in Financial Fraud

darkreading

U.S. authorities have charged 29 individuals, including a Cambodian senator, for their involvement in a financial fraud scheme targeting American citizens. The operation was centered around a network of fake investment websites, leading to the seizure of over 500 web domains associated with these scams. This crackdown highlights the growing issue of international fraud affecting U.S. residents, particularly as scammers increasingly utilize online platforms to deceive victims. The involvement of a foreign official raises concerns about the extent of these operations and their potential links to organized crime. Law enforcement's swift action is intended to protect citizens from further financial loss and deter similar schemes in the future.

Apr 24, 2026

Cambodian senator, others hit with US sanctions over scam allegations

SCM feed for Latest

The U.S. Treasury Department has imposed sanctions on Cambodian Senator Kok An and 28 other individuals and organizations due to their alleged roles in facilitating scam operations. The sanctions aim to disrupt these activities, which often involve fraud and deception targeting individuals and businesses. This action is part of a broader effort to combat international scams and protect potential victims from financial loss. The implications of these sanctions extend beyond Cambodia, as they signal a commitment from the U.S. to tackle global cybercrime and hold accountable those who enable such operations. By targeting key figures in these scams, authorities hope to deter similar activities in the future.

Apr 24, 2026

Ransomware supply chain untangled by RAMP forum leak

SCM feed for Latest

The Russian dark web forum and ransomware network known as RAMP has experienced a significant data breach, revealing a trove of user records and activity logs. This leak exposed thousands of details about how the cybercrime community operates, potentially impacting many individuals and organizations involved in or targeted by ransomware activities. Security researchers have noted that the information could help law enforcement and cybersecurity experts better understand the tactics and networks used by cybercriminals. The breach raises concerns about the security of personal data and the ongoing threats posed by ransomware gangs. As these forums often serve as hubs for cybercriminal collaboration, this incident could have far-reaching implications for future ransomware attacks.

Apr 24, 2026