‘Ransomware group threatens to leak KNVB contracts of trainers and players’
The criminal group Lockbit has in its possession contracts of soccer players and soccer coaches, documents about pending disciplinary cases and detailed information about the league’s operations and commercial affairs. This is reported by Het Parool and RTL Nieuws.
The criminals announced earlier this month that they had stolen more than 300 gigabytes of data. At the time, it was not known exactly what had been captured. According to RTL and Het Parool, it involves 230,000 files of which Lockbit has shared screenshots on the darkweb. Lockbit threatens to make everything public if not paid by April 26. It is unknown how much ransom is being demanded.
The KNVB reported earlier this month that cybercriminals had broken into the soccer association’s ICT network When it was disclosed that personal data of employees had been stolen. The association said it also filed a report with the Personal Data Authority.
How does a ransomware attack actually work? In this video, we explain:
Ransomware attack: how does it work?
Lockbit is a notorious hostage software group whose name refers to the hostage software of the same name. The group has close ties to Russia, according to investigative agencies. Last November, a man of Russian and Canadian nationality, Mikhail Vasilyev, was indicted by the U.S. Justice Department for participating in Lockbit’s ransomware campaign.
According to the U.S. Department of Justice, Lockbit has now demanded $100 million in ransoms in the United States and abroad. It allegedly received “tens of millions of dollars in actual ransom payments.”
A KNVB spokesman would not say anything about the attack for “strategic reasons.” “The forensic investigation is still ongoing,” the spokesman said.