Mr Popodopolous Posted September 25 Share Posted September 25 (edited) I don't usually post links from such a publication but there is an article in the Daily Mail. Apparently Championship Clubs are scrambling to tighten their security, us and Sheffield Wednesday were mentioned. Edited September 25 by Mr Popodopolous 1 1 Quote Link to comment Share on other sites More sharing options...
Popular Post Bristol Rob Posted September 25 Popular Post Share Posted September 25 3 minutes ago, Mr Popodopolous said: I don't usually post links from such a publication but there is an article in the Daily Mail. Apparently Championship Clubs are scrambling to tighten their security, us and Sheffield Wednesday were mentioned. Clearly. 1 19 2 Quote Link to comment Share on other sites More sharing options...
Mr Popodopolous Posted September 25 Author Share Posted September 25 (edited) 1 minute ago, Bristol Rob said: Clearly. I have before but certain publications I won't now. Even when football or FFP related.. Found it when looking for something else. Edited September 25 by Mr Popodopolous Quote Link to comment Share on other sites More sharing options...
Popular Post Silvio Dante Posted September 25 Popular Post Share Posted September 25 Found it: Championship Clubs In Hacked Shocker EFL Championship club Bristol City vowed to tighten security last night after a member of the public somehow hacked their systems and listed himself as a player of the first team squad, without any discernible ability. Anis Mehmeti, 24, is believed to have exploited a weakness in the system where the clubs technical director routinely gave out confidential information, including passwords, in an attempt to make himself feel like a big man on Twitter. Mehmeti bypassed the normal checks such as “does he know what the **** he’s doing when in sight of the opposition goal” and “the ability to pass to a teammate in a better position” to somehow become a part of Liam Mannings squad. An outraged Manning stated “Obviously it’s disappointing but the biggest bit for me is that our processes need to be better and the IT team need to take responsibility and up the security. A bit of time on the motherboard is no doubt needed but it’s difficult with the relentless schedule of cleaning up after Brian’s gaffes” Asked what the club would do with Mehmeti now he was somehow listed in a championship squad, Manning replied “We’ll need to use him now obviously and take him off after 60 minutes on Sunday, no matter how the games going” 6 107 3 3 Quote Link to comment Share on other sites More sharing options...
downendcity Posted September 25 Share Posted September 25 Does this mean that Robbored cannot believe it, even when it's on the OS? 6 3 Quote Link to comment Share on other sites More sharing options...
Red Cyril 2 Posted September 25 Share Posted September 25 1 hour ago, downendcity said: Does this mean that Robbored cannot believe it, even when it's on the OS? Yeah fake news Quote Link to comment Share on other sites More sharing options...
1960maaan Posted September 25 Share Posted September 25 Can't believe I dirtied myself by going onto that site, but here you go. EFL issues cyber attack warning after TWO Championship clubs are breached... as panicked teams recruit external agencies to fend off hackers EFL clubs have been warned over recent dangerous cyber attack breaches Some teams are now taking steps to hire external agencies to offer protection The EFL has issued an alert to clubs following a series of cyber attacks which have seen breaches at both Bristol City and Sheffield Wednesday in recent weeks. Mail Sport understands such is the seriousness of the situation that panicked sides have enlisted the help of external agencies as they seek to deal with what is an increasingly troubling issue. Hackers are targeting many of the competition’s bigger clubs, hunting for the personal data of season ticket holders and those on email lists. Should they be successful, that information, which can include passwords, is often sold on to a variety of buyers which are thought to include organised crime networks who can then attempt to use the data to carry out a variety of scams Earlier this month multiple emails were sent from senior officials at both the Robins and the Owls. They included links and, despite coming from official addresses, were actually the work of hackers who had managed to get into both clubs’ systems. The EFL quickly sent an alert to all clubs following the issues at Bristol City, warning them not to open emails from Bristol Sport chief financial officer Vicki Long. A similar situation unfolded at Wednesday, with suspicious emails sent from the account of finance director John Redgate. Both clubs were quick to respond and raise the alarm with those impacted. Earlier this month, League One Charlton Athletic contacted police after they were hit. EFL bosses have told clubs that the problem is growing and urged them to increase vigilance given the sensitive data that they hold. Leeds United appear to be among those leading the response. The club’s information security manager, Graham Peck, is creating a list of cyber security contacts at each side to ensure information is shared and to aid prompt responses. In May, Aston Villa launched an investigation into reports of a data breach. While they found a vulnerable area, which they then closed, they did not find evidence of unauthorised access or sharing of passwords. 1 1 Quote Link to comment Share on other sites More sharing options...
downendcity Posted September 25 Share Posted September 25 When the next team list is posted and shows Armstrong and Fally playing up front together, Twine at number 10 and Memehti and Williams on the bench, then we'll know we've been hacked! 9 Quote Link to comment Share on other sites More sharing options...
Davefevs Posted September 25 Share Posted September 25 Cyber attacks breaching Bristol City? Surely, they mean counter attacks breaching Bristol City? 2 Quote Link to comment Share on other sites More sharing options...
Northern Red Posted September 25 Share Posted September 25 Should there not have been some communication to supporters about this? 9 Quote Link to comment Share on other sites More sharing options...
Antman Posted September 25 Share Posted September 25 2 minutes ago, Northern Red said: Should there not have been some communication to supporters about this? yes, if they have lost (our) personal data do they not have to notify? 4 Quote Link to comment Share on other sites More sharing options...
downendcity Posted September 25 Share Posted September 25 14 minutes ago, Northern Red said: Should there not have been some communication to supporters about this? There would have been if we hadn't been hacked. 4 Quote Link to comment Share on other sites More sharing options...
SydneyCity Posted September 25 Share Posted September 25 Hmmm. This week I received an email from the shop saying that my order from 2023 had been dispatched. If that was part of this breach, it’s the most convincing scam I’ve ever seen. I genuinely do believe that the club shop could be that bad. 6 Quote Link to comment Share on other sites More sharing options...
handsofclay Posted September 25 Share Posted September 25 13 minutes ago, SydneyCity said: Hmmm. This week I received an email from the shop saying that my order from 2023 had been dispatched. If that was part of this breach, it’s the most convincing scam I’ve ever seen. I genuinely do believe that the club shop could be that bad. My partner had the same with emails from an order she made in Sept 2023 saying the items had now been despatched. Again it was this week she received these emails. 1 Quote Link to comment Share on other sites More sharing options...
redordead1 Posted September 25 Share Posted September 25 19 minutes ago, handsofclay said: My partner had the same with emails from an order she made in Sept 2023 saying the items had now been despatched. Again it was this week she received these emails. Me too 1 Quote Link to comment Share on other sites More sharing options...
SydneyCity Posted September 25 Share Posted September 25 36 minutes ago, handsofclay said: My partner had the same with emails from an order she made in Sept 2023 saying the items had now been despatched. Again it was this week she received these emails. Yep. That’s the one - September 2023 as well. 1 Quote Link to comment Share on other sites More sharing options...
The Bard Posted September 25 Share Posted September 25 1 hour ago, SydneyCity said: Hmmm. This week I received an email from the shop saying that my order from 2023 had been dispatched. If that was part of this breach, it’s the most convincing scam I’ve ever seen. I genuinely do believe that the club shop could be that bad. Lots of Beats fans had similar. 2 Quote Link to comment Share on other sites More sharing options...
Wilksi Posted September 26 Share Posted September 26 Same here. Wonder what the GDPR ramifications are from this. Another fine job PTI have done looking after the Bristol Sport IT. Quote Link to comment Share on other sites More sharing options...
Barrs Court Red Posted September 26 Share Posted September 26 I also had a string of emails. I did wonder if something was going on at the time, but out it down to general incompetence. 1 Quote Link to comment Share on other sites More sharing options...
Bazooka Joe Posted September 26 Share Posted September 26 11 hours ago, Davefevs said: Cyber attacks breaching Bristol City? Surely, they mean counter attacks breaching Bristol City? Or maybe Cider attacks. 2 Quote Link to comment Share on other sites More sharing options...
City oz Posted September 26 Share Posted September 26 11 minutes ago, Bazooka Joe said: Or maybe Cider attacks. Quote Link to comment Share on other sites More sharing options...
Norn Iron Posted September 26 Share Posted September 26 10 hours ago, SydneyCity said: Hmmm. This week I received an email from the shop saying that my order from 2023 had been dispatched. If that was part of this breach, it’s the most convincing scam I’ve ever seen. I genuinely do believe that the club shop could be that bad. Thanks for posting this. My son had similar this week as well, again from an order in (December) 23. 1 Quote Link to comment Share on other sites More sharing options...
westonred Posted September 26 Share Posted September 26 (edited) Thats funny I also had a Email from Bristol Sport saying my two away shirts had been processed ready for dispatching and had a tracking reference number to follow. I didnt order these shirts Edited September 26 by westonred Quote Link to comment Share on other sites More sharing options...
ooRya Posted September 26 Share Posted September 26 Yes, had an order dispatched email as well... Quote Link to comment Share on other sites More sharing options...
Super Posted September 26 Share Posted September 26 11 hours ago, SydneyCity said: Hmmm. This week I received an email from the shop saying that my order from 2023 had been dispatched. If that was part of this breach, it’s the most convincing scam I’ve ever seen. I genuinely do believe that the club shop could be that bad. I had the same yesterday 1 Quote Link to comment Share on other sites More sharing options...
Slack Posted September 26 Share Posted September 26 Had the same mail hopefully the club make an announcement saying nothing to be concerned about, worrying that the first we hear about this is from a newspaper article Quote Link to comment Share on other sites More sharing options...
Bristol Rob Posted September 26 Share Posted September 26 13 minutes ago, Slack said: Had the same mail hopefully the club make an announcement saying nothing to be concerned about, worrying that the first we hear about this is from a newspaper article If there is a genuine concern that there has been a data breach (and the resending of emails from 2023 would suggest something has been compromised) and as the club haven't commented publicly about what has happened, then raising a question to the ICO wouldn't be unreasonable. 1 Quote Link to comment Share on other sites More sharing options...
Henry Posted September 26 Share Posted September 26 1 minute ago, Bristol Rob said: If there is a genuine concern that there has been a data breach (and the resending of emails from 2023 would suggest something has been compromised) and as the club haven't commented publicly about what has happened, then raising a question to the ICO wouldn't be unreasonable. Yep, I would report them. They are suppose to let individuals know without delay. Quote Link to comment Share on other sites More sharing options...
Bristol Rob Posted September 26 Share Posted September 26 10 minutes ago, Henry said: Yep, I would report them. They are suppose to let individuals know without delay. The club will have a data owner (probably) or maybe even a chief data officer who should be all over this. 1 Quote Link to comment Share on other sites More sharing options...
Oizys Posted September 26 Share Posted September 26 @JerrySLO - The club surely needs to make a statement regarding this? Quote Link to comment Share on other sites More sharing options...
Simez Posted September 26 Share Posted September 26 I had four emails on Tuesday relating to orders in 2023. Quote Link to comment Share on other sites More sharing options...
Yozzarian Posted September 26 Share Posted September 26 Nothing here - so far. I wonder if this is somehow limited to those who ordered from the shop in the past? I've been getting legit emails from City even though I have opted out of this so in general, it's a bit of a shitshow. Definitely worth not clicking on anything and updating account passwords I'd have thought. Quote Link to comment Share on other sites More sharing options...
Henry Posted September 26 Share Posted September 26 2 hours ago, Steve Watts said: @JerrySLO - The club surely needs to make a statement regarding this? No point. He doesn’t post on here. Data Protection Officer Bristol Sport Limited Ashton Gate Stadium Ashton Bristol BS3 2EJ Email: privacy@bristol-sport.co.uk Quote Link to comment Share on other sites More sharing options...
MarcusX Posted September 26 Share Posted September 26 17 hours ago, 1960maaan said: Can't believe I dirtied myself by going onto that site, but here you go. EFL issues cyber attack warning after TWO Championship clubs are breached... as panicked teams recruit external agencies to fend off hackers EFL clubs have been warned over recent dangerous cyber attack breaches Some teams are now taking steps to hire external agencies to offer protection The EFL has issued an alert to clubs following a series of cyber attacks which have seen breaches at both Bristol City and Sheffield Wednesday in recent weeks. Mail Sport understands such is the seriousness of the situation that panicked sides have enlisted the help of external agencies as they seek to deal with what is an increasingly troubling issue. Hackers are targeting many of the competition’s bigger clubs, hunting for the personal data of season ticket holders and those on email lists. Should they be successful, that information, which can include passwords, is often sold on to a variety of buyers which are thought to include organised crime networks who can then attempt to use the data to carry out a variety of scams Earlier this month multiple emails were sent from senior officials at both the Robins and the Owls. They included links and, despite coming from official addresses, were actually the work of hackers who had managed to get into both clubs’ systems. The EFL quickly sent an alert to all clubs following the issues at Bristol City, warning them not to open emails from Bristol Sport chief financial officer Vicki Long. A similar situation unfolded at Wednesday, with suspicious emails sent from the account of finance director John Redgate. Both clubs were quick to respond and raise the alarm with those impacted. Earlier this month, League One Charlton Athletic contacted police after they were hit. EFL bosses have told clubs that the problem is growing and urged them to increase vigilance given the sensitive data that they hold. Leeds United appear to be among those leading the response. The club’s information security manager, Graham Peck, is creating a list of cyber security contacts at each side to ensure information is shared and to aid prompt responses. In May, Aston Villa launched an investigation into reports of a data breach. While they found a vulnerable area, which they then closed, they did not find evidence of unauthorised access or sharing of passwords. Hackers is probably doing some lifting. If people have been warned not to open an email from a specific invididual eg Vicki then I imagine she's fallen foul of a phising scam. 15 hours ago, SydneyCity said: Hmmm. This week I received an email from the shop saying that my order from 2023 had been dispatched. If that was part of this breach, it’s the most convincing scam I’ve ever seen. I genuinely do believe that the club shop could be that bad. Yep I had this too on Tuesday, my order was July 23. Was expecting a follow up to confirm this was nonsense but nothing since. 2 hours ago, Bristol Rob said: If there is a genuine concern that there has been a data breach (and the resending of emails from 2023 would suggest something has been compromised) and as the club haven't commented publicly about what has happened, then raising a question to the ICO wouldn't be unreasonable. Should be reported to the ICO within 72 hours, including communicating to affected parties. 1 Quote Link to comment Share on other sites More sharing options...
downendcity Posted September 26 Share Posted September 26 7 hours ago, City oz said: Do they do a stronger version called well hard cider? Quote Link to comment Share on other sites More sharing options...
MarcusX Posted September 26 Share Posted September 26 I’ve had a reply from the club: Completely understand your concern but don’t worry your details/data have not been compromised. Sorry about the email below, it was triggered in error following a system update by our retail software provider on Tuesday morning. Some supporters have received old confirmation emails as part of that error. 5 Quote Link to comment Share on other sites More sharing options...
wayne allisons tongues Posted September 27 Share Posted September 27 18 hours ago, MarcusX said: I’ve had a reply from the club: Completely understand your concern but don’t worry your details/data have not been compromised. Sorry about the email below, it was triggered in error following a system update by our retail software provider on Tuesday morning. Some supporters have received old confirmation emails as part of that error. Why haven’t the club passed this information on to everyone. Quote Link to comment Share on other sites More sharing options...
Fuber Posted September 27 Share Posted September 27 On 26/09/2024 at 08:43, Barrs Court Red said: I also had a string of emails. I did wonder if something was going on at the time, but out it down to general incompetence. *Gasp* Surely not? Who am I kidding. Quote Link to comment Share on other sites More sharing options...
MarcusX Posted Sunday at 08:02 Share Posted Sunday at 08:02 On 27/09/2024 at 12:27, wayne allisons tongues said: Why haven’t the club passed this information on to everyone. I asked this question / suggested they should - yet to receive a reply Quote Link to comment Share on other sites More sharing options...
Davefevs Posted Sunday at 08:29 Share Posted Sunday at 08:29 On 26/09/2024 at 18:11, MarcusX said: I’ve had a reply from the club: Completely understand your concern but don’t worry your details/data have not been compromised. Sorry about the email below, it was triggered in error following a system update by our retail software provider on Tuesday morning. Some supporters have received old confirmation emails as part of that error. Flyers supporters had the same fault too. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.