World Rugby

World Rugby suspended one of its websites after the governing body was the target of a cyber attack.

Hackers obtain personal data from thousands of subscribers to one of their databases.

The hackers were able to access the first name, email addresses, and encrypted passwords of thousands of users, including players, coaches, and parents from across the world after the security breach.

The hackers targeted World Rugby’s training and education website.

World Rugby’s main website, including Rugby World Cup ticketing and fan data plus sensitive information around players’ disciplinary hearings, was not at risk from the attack.

World Rugby immediately took down the affected sites and denied access to databases.

It brought in data and technology security experts to investigate the nature and scope of the incident and put in steps to prevent a similar attack.

World Rugby also sent emails to the subscribers to warn them of the breach and reassure them that as the passwords were encrypted, there was no danger of them being breached.

However, subscribers were recommended to change their passwords when the site comes back online.

Source: https://www.independent.ie/sport/rugby/irish-data-protection-commissioner-investigating-cyber-attack-that-claimed-player-details-from-world-rugby-36901619.html

TPRM report: https://scoringcyber.rankiteo.com/company/world-rugby

"id": "wor82422722",
"linkid": "world-rugby",
"type": "Breach",
"date": "05/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 'Thousands of subscribers '
                                              'including players, coaches, and '
                                              'parents',
                        'industry': 'Sports',
                        'location': 'Global',
                        'name': 'World Rugby',
                        'type': 'Sports Governing Body'}],
 'attack_vector': 'Website Hacking',
 'data_breach': {'data_encryption': 'Encrypted passwords',
                 'number_of_records_exposed': 'Thousands',
                 'personally_identifiable_information': ['First name',
                                                         'Email addresses'],
                 'type_of_data_compromised': ['First name',
                                              'Email addresses',
                                              'Encrypted passwords']},
 'description': 'World Rugby suspended one of its websites after a cyber '
                'attack where hackers obtained personal data from thousands of '
                'subscribers to one of their databases.',
 'impact': {'data_compromised': ['First name',
                                 'Email addresses',
                                 'Encrypted passwords'],
            'systems_affected': ['Training and education website']},
 'response': {'communication_strategy': ['Emails to subscribers warning of the '
                                         'breach',
                                         'Reassurance about encrypted '
                                         'passwords',
                                         'Recommendation to change passwords'],
              'containment_measures': ['Taking down affected sites',
                                       'Denying access to databases'],
              'remediation_measures': ['Investigating the nature and scope of '
                                       'the incident',
                                       'Preventive steps to avoid similar '
                                       'attacks'],
              'third_party_assistance': 'Data and technology security experts'},
 'threat_actor': 'Unknown Hackers',
 'title': 'World Rugby Cyber Attack',
 'type': 'Data Breach'}

World Rugby

Lazarus Naturals

Estes Forwarding Worldwide

Synnovis