Oldest Serie A football club Bologna FC has suffered a devastating ransomware attack in which threat actors stole trove of sensitive information.
The club confirmed in a short statement published on its website, noting, ““Bologna FC 1909 S.p.a. would like to communicate that a ransomware cyber-attack recently targeted its internal security systems,” the short notice reads.” The crime resulted in the theft of company data which may appear online. Please be warned that it is a serious criminal offense to be in possession of such data or facilitate its publication or diffusion.”
RansomHub, group claimed responsibility for the breach, leaking highly sensitive data exfiltrated during the attack on the dark web. Also complained that even after providing an extension to negotiate payment, the Italian football club did not comply with the ransom demands, resulting in the full dataset being published on the dark web.
“Bologna FC was hacked due to a lack of security on their network. All confidential data has been stolen. Bologna FC is violating GDPR laws and disclosing all internal club documents,” to pressurize the victim
The stolen date includes the below
- Sponsorship contracts and documents including confidential details
- Financial data spanning the club’s entire history
- Personal and confidential data on players, fans and employees
- Information on transfer strategies, including plans for new and young players
- Medical records of players and staff
- Confidential data related to stadiums and other buildings
- Commercial strategies and business plans
