The San Francisco’s 49ers network was hit with ransomware on Super Bowl Sunday. The cybergang BlackByte allegedly used the ransomware to steal some of the 49ers financial data.
BlackByte is a ransomware-as-a-service (RaaS) operation that leases out its ransomware infrastructure to others in return for a percentage of the ransom proceeds. According to ESPN, BlackByte posted some of the stolen data to the dark web however it did not publicize any ransom demands.
In a statement from 49ers staff “We recently became aware of a network security incident that resulted in temporary disruption to certain systems on our corporate IT network. “Upon learning of the incident, we immediately initiated an investigation and took steps to contain the incident. Third-party cybersecurity firms were engaged to assist, and law enforcement was notified.
The 49ers said the attack was isolated to the corporate network and did not compromise the personal data of ticketholders.