World Rugby

World Rugby suspended one of its websites after the governing body was the target of a cyber attack.

Hackers obtain personal data from thousands of subscribers to one of their databases.

The hackers were able to access the first name, email addresses, and encrypted passwords of thousands of users, including players, coaches, and parents from across the world after the security breach.

The hackers targeted World Rugby’s training and education website.

World Rugby’s main website, including Rugby World Cup ticketing and fan data plus sensitive information around players’ disciplinary hearings, was not at risk from the attack.

World Rugby immediately took down the affected sites and denied access to databases.

It brought in data and technology ­security experts to investigate the nature and scope of the incident and put in steps to prevent a similar attack.

World Rugby also sent emails to the subscribers to warn them of the breach and reassure them that as the passwords were encrypted, there was no danger of them being breached.

However, subscribers were recommended to change their passwords when the site comes back online.

Source: https://www.independent.ie/sport/rugby/irish-data-protection-commissioner-investigating-cyber-attack-that-claimed-player-details-from-world-rugby-36901619.html

"id": "WOR82422722",
"linkid": "world-rugby",
"type": "Breach",
"date": "05/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"