In a report covered by Business Insider, adidas publicly addressed a potential data security breach, which very well could affect portions of its extensive customer base. The sportswear giant announced that an “unauthorized party” had successfully infiltrated its U.S.-based website, possibly leaving those who purchased items from the site at risk.

Although who and how many affected remains unconfirmed, such information, including email addresses, physical addresses, login usernames, and passwords may have been compromised. adidas, however, believes credit card information and fitness data likely remain unscathed and is said to be working with security firms on a forensic investigation. As it now stands, the multinational brand is currently in the process of contacting those customers who may have been affected.

When asked to comment on the troubling situation, an adidas spokesperson told BI:

“adidas is committed to the privacy and security of its consumers’ personal data. adidas immediately began taking steps to determine the scope of the issue and to alert relevant consumers. adidas is working with leading data security firms and law enforcement authorities to investigate the issue.”

In case you missed it, adidas fans are being targeted in a recent cyber phishing scam.