Attackers stole member data from French Soccer Federation
Pierluigi Paganini November 28, 2025 November 28, 2025
The French Soccer Federation (FFF) disclosed a data breach after hackers used a compromised account to steal member data.
A compromised account allowed attackers to breach the French Soccer Federation (FFF), stealing data belonging to its members. The organization confirmed the cyberattack on Thursday, but did not disclose the number of members impacted.
“The FFF reports that the software used by clubs for their administrative management, and in particular that of their members, has been the victim of a cyberattack and data theft.” reads the data breach notice.
“Upon detection of this unauthorized access through the use of a compromised account, the FFF services took the necessary steps to secure the software and data, including immediately disabling the account in question and resetting all user account passwords.”
The federation stated that the issue was resolved following the discovery of unauthorized access.
The French Soccer Federation detected unauthorized access via a compromised account and immediately secured its systems by disabling the account and resetting all passwords. The organization filed a complaint and ANSSI and CNIL. The FFF will inform all individuals whose emails were in the database. The breach exposed only limited data, including name, surname, gender, birth details, nationality, postal address, email, phone number, and license number
TPRM report: https://www.rankiteo.com/company/federation-francaise-de-football
"id": "fed1764374659",
"linkid": "federation-francaise-de-football",
"type": "Breach",
"date": "2025-11-28T00:00:00.000Z",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'incident': {'affected_entities': [{'customers_affected': None,
'industry': 'Sports',
'location': 'France',
'name': 'French Soccer Federation (FFF)',
'size': None,
'type': 'Sports Governing Body'}],
'attack_vector': 'Compromised Account',
'customer_advisories': 'FFF will inform affected individuals via '
'email',
'data_breach': {'data_encryption': None,
'data_exfiltration': True,
'file_types_exposed': None,
'number_of_records_exposed': None,
'personally_identifiable_information': True,
'sensitivity_of_data': 'Moderate',
'type_of_data_compromised': ['Personally '
'Identifiable '
'Information '
'(PII)']},
'date_detected': '2025-11-27',
'date_publicly_disclosed': '2025-11-28',
'date_resolved': '2025-11-27',
'description': 'Attackers stole member data from the French '
'Soccer Federation (FFF) by exploiting a '
'compromised account. The breach exposed limited '
'personal information of members, including '
'names, birth details, contact information, and '
'license numbers. The FFF secured its systems by '
'disabling the compromised account and resetting '
'all user passwords, then filed complaints with '
'ANSSI and CNIL.',
'impact': {'brand_reputation_impact': 'Potential (data breach '
'disclosure)',
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': ['Name',
'Surname',
'Gender',
'Birth details',
'Nationality',
'Postal address',
'Email',
'Phone number',
'License number'],
'downtime': None,
'financial_loss': None,
'identity_theft_risk': 'Moderate (PII exposed)',
'legal_liabilities': 'Complaint filed with ANSSI and '
'CNIL',
'operational_impact': 'Limited (systems secured '
'promptly)',
'payment_information_risk': None,
'revenue_loss': None,
'systems_affected': ['Administrative management '
'software used by clubs']},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': 'Compromised user '
'account',
'high_value_targets': None,
'reconnaissance_period': None},
'investigation_status': 'Ongoing (complaint filed, notifications '
'pending)',
'post_incident_analysis': {'corrective_actions': ['Account '
'disablement',
'Password '
'reset for all '
'users',
'System '
'securing '
'measures'],
'root_causes': 'Compromised account '
'leading to '
'unauthorized access'},
'ransomware': {'data_encryption': None,
'data_exfiltration': None,
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': None},
'references': [{'date_accessed': '2025-11-28',
'source': 'Security Affairs',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': 'Complaint filed with '
'ANSSI and CNIL',
'regulations_violated': None,
'regulatory_notifications': ['ANSSI '
'(French '
'National '
'Cybersecurity '
'Agency)',
'CNIL '
'(French '
'Data '
'Protection '
'Authority)']},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'FFF will inform all '
'individuals whose emails '
'were in the database',
'containment_measures': ['Disabled compromised '
'account',
'Reset all user account '
'passwords'],
'enhanced_monitoring': None,
'incident_response_plan_activated': True,
'law_enforcement_notified': True,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': ['Secured the '
'administrative management '
'software'],
'third_party_assistance': None},
'title': 'Data breach at the French Soccer Federation (FFF) via '
'compromised account',
'type': 'Data Breach'}}