ASVEL Basket, a top French basketball team owned by former NBA star Tony Parker, has reportedly fallen victim to a ransomware attack. The notorious NoEscape ransomware gang claims to have breached ASVEL's systems and stolen 32GB of confidential data.
The French basketball team competes in the Euroleague and has some very high-profile players, all of whom have been affected by the attack.
What Information Did the Hackers Obtain?
According to the hackers, they were able to access sensitive information including player passports, IDs, financial records, tax documents, non-disclosure agreements, player scouting contracts, and other private files.
The team hasn’t released any statement on the ransomware attack and declined to comment when requested by publications.
NoEscape, the group responsible for the attack, leaked news of the ASVEL attack on their dark web site, a common tactic used to pressure victims into paying ransom demands. The group first appeared in May 2022 and operates on a Ransomware-as-a-Service model where malware developers sell ransomware to affiliates.
Formerly known as Avaddon, NoEscape has attacked various organizations. Their ransomware demands tend to be anywhere between $100,000 to $10 million.
Has the Attack Had Any Impact on the Team’s Operations?
It remains unclear what impact, if any, the reported ransomware attack has had on ASVEL's operations. The team continues to compete in the Euroleague season which runs through spring 2023.
It goes without saying, though, that ASVEL is going to do all it can to strengthen its cybersecurity and get the compromised data back. The stolen data could be publicly leaked if the team refuses to meet the ransomware demands.
Ransomware Remains a Persistent Threat
This latest high-profile attack highlights the ongoing threat ransomware poses to businesses, governments and organizations worldwide. By implementing stronger security controls and training employees to recognize cyber risks, entities can reduce their risk of becoming ransomware victims. But as this case shows, no one is immune from potential compromise.
One thing is clear now, though. All organizations need to re-examine their cyber defenses given the relentlessness of ransomware groups.