November 29, 2024 at 12:25PM
Bologna Football Club 1909 confirmed a ransomware attack by the RansomHub group, which leaked stolen data online. The club warns against sharing the data, citing serious legal consequences. The leaked information includes personal player data, financial records, and sponsorship details, highlighting a growing threat to sports organizations.
**Meeting Takeaways: Bologna Football Club 1909 Ransomware Attack**
1. **Incident Confirmation**: Bologna Football Club 1909 confirmed it was targeted by a ransomware attack that resulted in the theft of sensitive company data.
2. **Date of Attack**: The attack was claimed by the RansomHub extortion group on November 19, 2024.
3. **Consequences of Data Leak**: The stolen data has been leaked online, prompting the club to issue a warning against downloading or sharing this information, highlighting that possession or dissemination is a serious criminal offense.
4. **Scope of the Data Leaked**: The compromised data includes:
– Sponsorship contracts and details
– Complete historical financial data
– Personal and confidential data of players
– Transfer strategies for new and young players
– Confidential information about fans and employees
– Medical records
– Infrastructure information, including stadium data
– Commercial strategies and business plans
5. **Threat to Publication**: RansomHub previously threatened to publish various confidential documents unless a ransom was paid. They used examples of previous violations leading to fines as leverage.
6. **Context of Ransomware in Sports**: Although rare, ransomware attacks on sports teams are becoming more prevalent, particularly among organizations that manage significant financial resources. Previous incidents noted include attacks on ASVEL and the San Francisco 49ers.
7. **Next Steps for Bologna FC**: The club is likely working on securing its internal systems and managing the fallout from the data breach while addressing any potential legal ramifications associated with the leaked information.
8. **Public Communication**: A formal communication has been issued to the public and stakeholders regarding the incident and the legality surrounding the stolen data.