The French Soccer Federation (FFF) disclosed a data breach on Friday after attackers used a compromised account to realize entry to administrative administration software program utilized by soccer golf equipment.
After detecting the unauthorized entry, FFF’s security staff disabled the compromised account and reset all person passwords throughout the system.
Nonetheless, earlier than they have been detected and evicted from the breached programs, the risk actors stole private and get in touch with data from members of French soccer golf equipment.
“Upon detection of this unauthorized entry by means of using a compromised account, the FFF companies took the mandatory steps to safe the software program and knowledge, together with instantly disabling the account in query and resetting all person account passwords,” the FFF stated [machine translation].
“This breach is restricted to the next knowledge solely: title, surname, gender, date and hometown, nationality, postal handle, e-mail handle, phone quantity and license quantity.”
As required beneath European knowledge safety rules, the group has filed a legal criticism and notified France’s Nationwide Cybersecurity Company (ANSSI) and the Nationwide Fee on Informatics and Liberty (CNIL), the nation’s knowledge safety authority.
The FFF stated it’s going to instantly notify all people whose e-mail addresses seem within the compromised database and urged members to be suspicious of messages claiming to originate from the federation, their golf equipment, or different senders.
French soccer membership members ought to be cautious of any communications requesting that they open attachments or present account credentials, passwords, or banking data.
“The FFF is dedicated to defending all the info entrusted to it and is consistently strengthening and adapting its security measures with the intention to cope, like many different actors, with the growing quantity and new types of cyberattacks,” the FFF added.
A spokesperson for the French Soccer Federation (FFF) was not instantly obtainable for remark when contacted by BleepingComputer earlier at present.
Earlier this month, the French social security service for folks and home-based childcare suppliers (Pajemploi) additionally suffered a data breach which will have uncovered private data of roughly 1.2 million people.
It is finances season! Over 300 CISOs and security leaders have shared how they’re planning, spending, and prioritizing for the yr forward. This report compiles their insights, permitting readers to benchmark methods, establish rising tendencies, and evaluate their priorities as they head into 2026.
Learn the way high leaders are turning funding into measurable impression.
