This Week's Top Five Stories in Cyber

Who is Behind Under Armour's Reported Data Breach?

Ransomware strikes again.

Sportswear giant Under Armour is the latest brand in the spotlight after the Everest ransomware group claimed responsibility for a major data breach, alleging it has stolen 343GB of company data.

Portions of the stolen information have reportedly surfaced on the group’s dark web leak site after the ransom deadline expired.

According to Have I Been Pwned, a website allowing users to check whether their personal data has been compromised by data breaches, 72 million email addresses and other records including names, genders, birthdates and ZIP codes are present in the leaked dataset.

How Nike is Responding After Potential Data Breach

With the dust having barely settled following a reported data breach at Under Armour, the defences of another sportwear giant are now coming under microscope. 

Nike is reported to have suffered a similar attack, with ransomware group World Leaks claiming responsibility. It says 1.4 terabytes of data belonging to Nike have been published. 

“We always take consumer privacy and data security very seriously,” said Nike, according to Reuters. “We are investigating a potential cyber security incident and are actively assessing the situation.”

Rob Edmondson, Director of Product at CoreView, comments: “Nike will be running fast to identify if critical IP and systems have been exposed.”

Why EU's Revised Cybersecurity Act Bans High-Risk Suppliers

European countries, being high-value targets for cybercriminals, face “daily cyber and hybrid attacks on essential services and democratic institutions, carried out by sophisticated state and criminal groups,” according to the European Commission (EC). 

The commission, acknowledging this hostile cyber reality, has proposed a new cybersecurity package that includes revisions to the current Cybersecurity Act (CSA).

The package will help the European Union and its member states to “identify and mitigate risks across the EU's 18 critical sectors”, the EC says.

“Cybersecurity threats are not just technical challenges,” says Henna Virkkunen, Executive Vice-President for Tech Sovereignty, Security and Democracy of the European Commission. “They are strategic risks to our democracy, economy and way of life.”

When Reality isn’t Real: Preparing for Deepfakes in 2026

In 2026, the idea that seeing is believing feels increasingly outdated. 

Advances in generative AI are pushing deepfakes from the fringes of the internet into everyday digital life, reshaping how businesses think about identity, trust and security.

What was once the domain of niche creators is becoming accessible to everyday users, with deepfake creation predicted to grow by three to five times over the next year alone.

For enterprises operating in finance, social media, mobility and beyond, the shift represents a material risk to customers, brands and platforms that rely on digital interactions being authentic.

World Economic Forum: Scaling AI Requires Trust & Governance

AI continues to reshape industries, pushing companies to reconfigure how work gets done. Businesses are embedding AI directly into their operations, shifting away from surface-level automation to complete organisational redesign.

A new paper from the World Economic Forum (WEF), AI at Work: From Productivity Hacks to Organisational Transformation, explores how more than 20 major technology companies are adapting to the age of intelligent work. The findings were released during the 2026 World Economic Forum Annual Meeting in Davos, where leading firms and global figures gathered in Switzerland to discuss key global developments.

At the summit, 25 companies – including Cisco, ServiceNow, Pegasystems and Wipro – confirmed a joint commitment to make AI tools more accessible, improve global digital skills and open new job pathways in AI-driven roles. WEF expects this initiative to reach at least 120 million people by 2030.