The San Francisco 49ers have fallen victim to a ransomware attack.
The NFL team confirmed that it was targeted by a ransomware attack in statements to BleepingComputer and The Record. A spokesperson also said that the team is cooperating with “third-party cybersecurity firms” and law enforcement organizations to investigate the incident.
The spokesperson told BleepingComputer, “We believe this incident is limited to our corporate IT network; to date, we have no indication that the incident involved systems outside of our corporate network, such as Levi’s.” Systems associated with stadium operations or ticket holders.”
The San Francisco 49ers haven’t blamed any specific group for the attack, but according to multiple screenshots, the Blackbyte ransomware gang has claimed responsibility for the hack on a website used to leak information about its victims so that they should be paid a ransom. be persuaded to pay.
It hardly seems like a coincidence, then, that the FBI and the US Secret Service published a joint advisory on February 11 about the Blackbyte ransomware – a day before Blackbyte took credit for the attack and was confirmed by the San Francisco 49ers. It was that this agreement was done two days ago. ,
“As of November 2021,” the FBI and the US Secret Service said in the advisory, “the Blackbite ransomware had compromised multiple US and foreign businesses, including at least three US critical infrastructure sectors (government facilities, financial and food and agriculture). institutions were involved.
The advisory includes technical details of how the ransomware operates, indicators of compromise security teams can use to help determine whether a system was targeted by Blackbyte ransomware, and how to reduce the risk of a successful attack. recommendations for.