Olympique Marseille confirms 'attempted' cyberattack after data leak
Bleeping Computer
by Sergiu GatlanFebruary 26, 2026
AI-Generated Deep Dive Summary
French professional football club Olympique de Marseille has confirmed an attempted cyberattack following a data leak reported by a threat actor earlier this week. The attacker claimed to have breached the club's systems and leaked a sample of stolen information on a hacking forum, including personal details of approximately 400,000 individuals. This incident highlights the growing trend of cyberattacks targeting large organizations, particularly those in the sports industry.
The threat actor alleged to have obtained sensitive data such as names, addresses, email addresses, and mobile phone numbers, along with login credentials for over 2,050 Drupal CMS accounts linked to the club. Despite this, Olympique Marseille assured fans that no banking details or passwords were compromised. The club promptly reported the incident to France's data protection authority (CNIL) and advised supporters to remain vigilant against phishing attempts.
This attack underscores the vulnerability of sports organizations to cyber threats, particularly those with significant online presences and supporter bases. While Olympique Marseille managed to mitigate the situation quickly, the incident serves as a reminder of the importance of robust cybersecurity measures for institutions handling large volumes of personal data. The case also raises questions about the adequacy of current security protocols in protecting against sophisticated attackers targeting critical infrastructure.
For readers interested in security, this story highlights the evolving nature of cyber threats and the need for organizations to adapt their defenses to emerging risks. It also emphasizes the importance of timely responses and transparent communication with stakeholders during such incidents.
Verticals
securitytech
Originally published on Bleeping Computer on 2/26/2026