FIFA discloses massive hack as internal documents are leaked to press

Malicious actors targeted officials in a phishing operation unconnected to last year’s Fancy Bear attack

FIFA World Cup

FIFA (Fdration Internationale de Football Association) has admitted it sustained a massive hack in March, with officials at UEFA also targeted by a suspected phishing campaign.

Officials from the governing body admitted the hack to journalists after a FIFA Council meeting last week hosted in Kigali, Rwanda, according to the New York Times.

President Gianni Infantino said that FIFA, as well as the European governing body UEFA, had been receiving a litany of queries from reporters regarding the contents of the internal documents that had been stolen.

A handful of media organisations are set to publish a set of stories based on leaks documents imminently, with the Football Leaks group having originally obtained the material.

Officials said they suspected UEFA staff were targeted by a phishing operation that duped them into revealing their password-protected login details. But the organisation has been unable to find any traces of a hack in its systems.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

FIFA said it "condemns any attempts to compromise the confidentiality, integrity and availability of data in any organization using unlawful practices", in a statement to AP.

"Of course, we are concerned by the fact that some information has been obtained illegally," it continued. There has been no official word as to how much data was accessed or stolen by attackers, or what the leaked documents contained.

This is the second large-scale cyber attack FIFA has suffered in recent years, after the Russian-originating Fancy Bear hack in 2017 led to the publication of a list of footballers who were cleared of drug tests. This latest phishing attack is thought to be completely unrelated.

One leak revealed that 28 high-profile players including Argentinian striker Carlos Tevez and Germany's Mario Gomez had been granted exemptions to prohibited substances in order to treat legitimate conditions.

The world's footballing governing body has endured a rocky few years after being plagued by cyber issues as well as significant controversies based on allegations of high-level corruption, and the leakage of internal documents.

Advertisement - Article continues below

The FIFA World Cup 2018, hosted in Russia, was also targeted by a series of phishing campaigns, and by "cyber terrorists", who targeted both fans and officials.

Just as the competition reached its climax this summer Symantec revealed that Android device-owning supporters were being targeted by spyware in the form of a 'GoldenCup' app.

The threat of cyber attacks became so paramount that the UK's National Cyber Security Centre (NCSC) was tasked with briefing the England national football team to help them avoid being targeted by cyber criminals during the competition.

IT Pro approached FIFA for comment but did not get a response at the time of writing.

Featured Resources

Digitally perfecting the supply chain

How new technologies are being leveraged to transform the manufacturing supply chain

Download now

Three keys to maximise application migration and modernisation success

Harness the benefits that modernised applications can offer

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

The 3 approaches of Breach and Attack Simulation technologies

A guide to the nuances of BAS, helping you stay one step ahead of cyber criminals

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020
Visit/microsoft-windows/32066/what-to-do-if-youre-still-running-windows-7
Microsoft Windows

What to do if you're still running Windows 7

14 Jan 2020
Visit/web-browser/30394/what-is-http-error-503-and-how-do-you-fix-it
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020
Visit/business-strategy/mergers-and-acquisitions/354602/xerox-to-nominate-directors-to-hps-board-reports
mergers and acquisitions

Xerox to nominate directors to HP's board – reports

22 Jan 2020