The French soccer federation (FFF) confirmed on Thursday that it had been targeted by a cyber-attack resulting in the theft of data related to its members. The federation specified that the malicious act was directed at the software utilized by local clubs for their administrative management, particularly for the handling of registered members. While the FFF disclosed the nature of the breach, it did not specify the total number of members whose information may have been compromised during the incident.
According to the FFF, the issue was detected and resolved soon after the unauthorized access occurred. The breach was carried out using a single compromised account within the administrative software. Upon detection, the federation’s technical services immediately took action to secure both the software and the data it held, which involved promptly disabling the compromised account and implementing a full reset of all user-account passwords across the system.
The federation has taken the formal step of filing a complaint regarding the cyber-attack. It provided clarification on the scope of the stolen information, assuring the public that the breach was limited to basic personal data. The exposed details included personal identifiers such as names, gender, nationality, and contact information like postal and email addresses.
The FFF released a statement affirming its commitment to data security and the protection of information entrusted to it by its members. It emphasized that it is continually working to strengthen and adapt its security measures. This ongoing effort is necessary to effectively counter the growing variety and evolving nature of cyber-attacks, which the federation notes are increasingly faced by many other organizations globally.
Reference:
