Threat Actors Post Tennis Tournament Data Breach in Israel

RHC Dark Lab : 4 July 2024 14:34

Recently, a threat actor in an underground forum published an alleged data breach. This breach is claimed to have compromised the personal information of thousands of participants and instructors involved in a tennis tournament in Israel.

The data includes sensitive details such as contact information, medical records, and national rankings, potentially putting those affected at risk of identity theft and other malicious activities. Given that this information was posted by a cybercriminal, its authenticity remains uncertain.

At the moment, we cannot confirm the veracity of this report, as the organization has not yet issued an official statement regarding the incident on its website. Therefore, this article should be regarded as ‘intelligence source.’

Details of the alleged violation

Vorresti toccare con mano la Cybersecurity e la tecnologia? Iscriviti GRATIS ai WorkShop Hands-On della RHC Conference 2025 (Giovedì 8 maggio 2025)

Se sei un ragazzo delle scuole medie, superiori o frequenti l'università, oppure se solamente un curioso, il giorno giovedì 8 maggio 2025 presso il teatro Italia di Roma (a due passi dalla stazione termini e dalla metro B di Piazza Bologna), si terranno i workshop "hands-on", creati per far avvicinare i ragazzi alla sicurezza informatica e alla tecnologia. Questo anno i workshop saranno:

Creare Un Sistema Ai Di Visual Object Tracking (Hands on)

Social Engineering 2.0: Alla Scoperta Delle Minacce DeepFake

Doxing Con Langflow: Stiamo Costruendo La Fine Della Privacy?

Come Hackerare Un Sito WordPress (Hands on)

Il Cyberbullismo Tra Virtuale E Reale

Come Entrare Nel Dark Web In Sicurezza (Hands on)

Potete iscrivervi gratuitamente all'evento, che è stato creato per poter ispirare i ragazzi verso la sicurezza informatica e la tecnologia.
Per ulteriori informazioni, scrivi a [email protected] oppure su Whatsapp al 379 163 8765

Supporta RHC attraverso:

• L'acquisto del fumetto sul Cybersecurity Awareness
• Ascoltando i nostri Podcast
• Seguendo RHC su WhatsApp
• Seguendo RHC su Telegram
• Scarica gratuitamente "Dark Mirror", il report sul ransomware di Dark Lab

Ti piacciono gli articoli di Red Hot Cyber? Non aspettare oltre, iscriviti alla newsletter settimanale per non perdere nessun articolo.

According to the information obtained from the forum, a substantial amount of data—comprising 1.74 MB in total—was leaked. The data includes details of 280 instructors and 8,217 users involved in the tennis tournament. The leaked information is in CSV format and consists of various personal details such as:

• ID numbers
• Usernames
• Full names
• Dates of birth
• Gender
• Addresses (including street, house number, and city)
• Phone numbers and mobile contacts
• Email addresses
• Club affiliations
• National rankings
• Last login dates
• Medical information

Information on the objective of threat actors

The breach involves a tennis tournament held in Israel, possibly organized by a local sports or tennis association. The exact details about the organization responsible for the event are not explicitly mentioned in the leak. However, the presence of specific data points such as medical records and national rankings suggests that the involved entity is likely a well-established sports body managing large volumes of sensitive personal information. The organization is believed to employ numerous staff members and cater to a wide range of participants, given the scale of the exposed data.

Implications of the Breach

The release of this personal information poses significant risks, including identity theft, phishing attacks, and unauthorized access to private accounts. Participants and instructors whose information has been compromised are particularly vulnerable to targeted scams and fraudulent activities. The inclusion of medical data and national rankings could also be exploited to cause personal harm or reputational damage to the affected individuals.

Additionally, the breach could have broader implications for the sports community in Israel, including potential financial and legal repercussions for the organization involved. The exposed data might lead to a loss of trust among participants and partners, affecting future events and collaborations.

Conclusion

This incident highlights the critical need for robust data security measures, especially for organizations handling sensitive personal information. As is our custom, we always leave room for a statement from the company should they wish to provide us with updates on the matter. We would be happy to publish such information with a specific article highlighting the issue. RHC Dark Lab will monitor the evolution of the situation in order to publish further news on the blog, should there be substantial updates. If there are individuals with knowledge of the facts who wish to provide information anonymously, they can use the whistleblower’s encrypted email.

This article has been compiled based on public information that has not yet been verified by the respective organizations. We will update our readers as more details become available.

RHC Dark Lab
RHC Dark Lab is a group of experts from the Red Hot Cyber community dedicated to Cyber Threat Intelligence led by Pietro Melillo. Participating in the collective, Sandro Sana, Alessio Stefan, Raffaela Crisci, Vincenzo Di Lello, Edoardo Faccioli. Their mission is to spread knowledge about cyber threats to improve the country's awareness and digital defences, involving not only specialists in the field but also ordinary people. The aim is to disseminate Cyber Threat Intelligence concepts to anticipate threats.