Paris Saint-Germain (PSG), a renowned French football club, encountered a cyber attack targeting its ticketing system, raising concerns about data security and fan information safety ahead of the Champions League quarter-finals. Detected on April 3, unusual access attempts prompted swift action from PSG’s cybersecurity team, who promptly identified and addressed a vulnerability within 24 hours.
In response to the breach, PSG promptly implemented additional security measures and notified the CNIL (Commission Nationale de l’Informatique et des Libertés) by April 5, adhering to regulatory requirements. Furthermore, PSG initiated the process of informing individuals potentially affected by the cyber attack, demonstrating transparency and commitment to compliance.
While PSG sought to reassure fans and stakeholders, stating no evidence of data extraction or exploitation by attackers was found, the breach exposed various identity data types, including names, email addresses, mobile numbers, and account statuses. Despite the breach, PSG remains vigilant, emphasizing their readiness to address the situation and prevent future incidents as they prepare for the upcoming Champions League match.
Reference:
