The Lyon supporters’ discussion site was the victim of a cyberattack the day after the bottle was thrown at the Marseillais. More than 30,000 user records have been stolen, they are said to come from an older version of the site.
On November 21, a Lyon supporter threw a bottle at the player Dimitri Payet in the middle of a match. This live filmed attack was sanctioned by the courts, the perpetrator was sentenced to six months in prison. A cybercriminal claiming to be a supporter of Olympique de Marseille, for his part, wanted to punish the club himself by attacking its official forum.
SEE ALSO – Payet hit by a bottle of water, Lyon-Marseille arrested
Unveiled Thursday, November 25 by cybersecurity expert Damien Bancal, the attack was confirmed at Figaro. In total, a Marseille hacker stole 38,500 user files from the forum. Information like emails or some IP addresses were stolen, but no password. The connection mode used is the token, an ephemeral electronic key. These famous tokens have already all expired, according to club management.
The criminal posted the datasets on the darkweb, accompanied by a scathing note addressed to the OL. “The offensive post openly referred to the events of the day before [le jet de bouteille contre Dimitri Payet, NDLR] », Explains Loïc Dechoux, the information systems security manager of the OL group.
Investigations in progress
The intrusion into the forum’s computer systems took place on November 22, the day after the attack. A few days later, the files had already disappeared from the web. Only three people would have had access to this file.
The exact value of the stolen information remains to be determined. According to the first elements of the internal survey, “the data could come from the old version of the forum“. The site was updated last February, nothing more recent seems to have been compromised.
As required by law, the National Commission for Informatics and Liberties (Cnil) has been informed by the club. Users have not yet been alerted. The group was in no hurry, the data is obviously not sensitive. Despite this virulent attack, the club does not favor the identification of the attacker. “Our primary objective is to ensure the protection of the data of our supporters again.», Explains OL.