// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
Breach Record

Adidas

DISCLOSED 2025-05-20 · SUPPLY CHAIN

In May 2025, Adidas revealed a data breach that exposed customer information from its Turkish and Korean operations. The breach was caused by a compromise at a third-party vendor. The exact number of affected records and specific data types beyond customer information were not disclosed.

The record

What we know

Disclosed
2025-05-20
Attack vector
Supply Chain
Sector
retail
Domain
adidas.com
Data classes exposed
customer information
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · unclear · opinion

The breach originated from a third-party vendor, not Adidas's own endpoints. A positive-security model on Adidas's systems would not have prevented the vendor compromise, but could have limited data exposure if the vendor had access to only a subset of systems. Without details on the vendor's access, it is unclear if such a model would have helped.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

Similar vector · recent

Other supply chain breaches on file

This page is the permanent ColdRecon entry for the Adidas disclosure. It updates if new public reporting emerges. All tracked breaches →

Adidas just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →