Threat Actor: RansomHub | RansomHub
Victim: Bologna FC 1909 S.p.a. | Bologna FC 1909 S.p.a.
Price: Not disclosed
Exfiltrated Data Type: Sensitive player, financial, and operational data
Key Points :
- RansomHub conducted a targeted ransomware attack on Bologna FC’s internal security systems.
- The attack resulted in the exfiltration of approximately 200 GB of confidential data.
- Compromised data includes player contracts, personal information, medical records, and operational strategies.
- The breach has potential implications for financial penalties, legal scrutiny, and operational disruption for Bologna FC.
- RansomHub is recognized as one of the most active ransomware groups, posing a significant threat to various sectors.
Serie A club falls victim to RansomHub, exposing sensitive player, financial, and operational data.
Bologna FC 1909 S.p.a. has officially confirmed a targeted ransomware attack on its internal security systems, resulting in the exfiltration of a significant volume of confidential data. The cybercriminal group RansomHub has claimed responsibility for the breach and subsequent publication of the stolen information.
In a statement released by the club, representatives acknowledged the security incident and emphasized the gravity of the situation, stating that the unauthorized access, dissemination, or possession of the stolen data constitutes a serious criminal offense.
Details of the Breach:
RansomHub, known for its aggressive tactics and recent attacks on both private and public sector entities, allegedly contacted Bologna FC on November 19, 2024, accusing the club of failing to adequately protect sensitive information pertaining to players, sponsors, and internal operations. Despite extending the deadline for a ransom payment, the group ultimately released the stolen data, purportedly amounting to 200 GB, onto the dark web.
This incident follows closely on the heels of RansomHub’s claimed attack on the official website of the Mexican federal government, where 313 GB of data was allegedly stolen. Security researchers have identified RansomHub as one of the most active and rapidly growing ransomware groups, posing a significant threat to organizations across various sectors.
Compromised Information:
The compromised data reportedly includes a wide range of sensitive information, including:
- Contractual and Financial Data: Player contracts, sponsorship agreements, complete financial history, and commercial strategies.
- Player Data: Personal information, medical records, and performance evaluations.
- Operational Data: Transfer strategies, youth development programs, and internal communications.
- Stakeholder Data: Information related to fans and staff members.
Implications for Bologna FC:
The ramifications of this data breach for Bologna FC are potentially severe, encompassing:
- Financial and Reputational Damage: Significant financial penalties for potential GDPR violations and long-term reputational damage.
- Legal and Regulatory Scrutiny: Potential legal action from individuals whose data was compromised and investigations by regulatory bodies.
- Operational Disruption: Leaked internal strategies and sensitive data could disrupt the club’s operations and competitive advantage.
Related Posts:
Original Source: https://securityonline.info/bologna-fc-suffers-major-data-breach-in-ransomware-attack/