Massive Leak Of Nike Internal Documents Surfaces On Dark Web

Nike has launched an investigation into a major cybersecurity incident after the hacking group known as World Leaks claimed to have stolen and published 1.4 terabytes of its internal files.

The group released over 188,000 documents, reportedly containing sensitive information tied to product development and supply chain logistics. Though Nike has not verified the full scope or authenticity of the breach, cybersecurity analysts and journalists who reviewed samples say the materials appear legitimate.

The company has confirmed that no personal data belonging to customers or employees has been found in the leaked dataset so far.

Why It Matters: The leaked documents provide a detailed look at internal business operations that are rarely visible outside of the company. Nike now faces potential consequences related to intellectual property theft, counterfeiting risks, and possible disruptions to manufacturing and distribution plans that rely on confidentiality and control over production cycles.

• Scale and Content of the Leak: According to World Leaks, the breach involved the release of more than 1.4 terabytes of internal Nike data. The exposed documents total over 188,000 files, including technical specifications, development files, design schematics, manufacturing evaluations, and product planning documents. Folder names revealed by journalists and researchers include titles such as “tech packs and evaluations” and “schematics,” indicating that the data is focused on the early stages of product creation and the processes used to bring items into production.

• Corporate but Not Customer Data: Security analysts who reviewed the leak state that the published documents do not appear to include personal identifiers of customers or employees. While this may limit regulatory attention in the short term, the exposed content still includes details on material sourcing and internal training materials. These files could be valuable to competitors seeking insight into Nike’s planning or to counterfeit operations looking for accurate product templates.

• Potential Source of the Breach: Investigators and threat intelligence firms have speculated that the breach may have originated through vulnerabilities in Nike’s supply chain infrastructure. Some reports reference unpatched systems that may have allowed unauthorized access to internal data stored or shared with third-party partners. While Nike has not confirmed these details, security experts highlight that manufacturing networks often involve numerous vendors, each of which can introduce new risks.

• Supply Chain and Counterfeiting Risks: The leaked documents reportedly contain audit results, partner data, production workflows, and validation reports that provide detailed insights into how Nike’s products are made and shipped. If counterfeit manufacturers gain access to this information, they may be able to produce unauthorized replicas that closely mirror genuine items. Additionally, exposing production timelines and release schedules may disrupt upcoming product launches by allowing competitors or black-market sellers to act on advance knowledge of unreleased designs.

• The Role of World Leaks: World Leaks appeared in early 2025 following the shutdown of the ransomware group known as Hunters International. Unlike earlier groups that focused on encrypting files for ransom, World Leaks has adopted a method centered on data theft and public exposure through a network of affiliates. Researchers tracking the group say its past activity includes breaches at companies such as Dell and Chain IQ. Its operators have chosen to release files directly instead of using encryption, allowing them to pressure organizations through the threat of exposure rather than through technical disruption of systems.

Go Deeper -> World Leaks Ransomware Group Claims 1.4TB Nike Data Breach – Infosecurity Magazine

Nike investigating mega security breach as hackers claim to have stolen 1.4TB of data – TechRadar

Nike data breach: Hackers post company data, but what do we know so far? – Cybernews