October 26, 2023
Promo Protect all your devices, without slowing them down. Free 30-day trial
A high profile French basketball team has fallen victim to the NoEscape ransomware-as-a-service group, who claim to have stolen 32 GB of data including sensitive personal information about the club’s star players.
Lyon-based ASVEL, owned by former NBA star Tony Parker, has issued a press release confirming rumours that spread earlier this month that it had been hacked.
ASVEL says that the first it knew of a potential security breach was on October 12 when it was approached by members of the press who had spotted references to a hack of the basketball club on NoEscape’s dark web leak site.
NoEscape is threatening to publish the stolen data unless ASVEL is prepared to negotiate a ransom payment. The cybercriminal group says that it has emailed instructions to the club about how negotiations can begin:
ASVEL, which has brought in third-party experts to help with its response to the ttack, says that its club activities have not been disrupted, and that – so far – it has not seen evidence that fans’ payment information has been compromised.
The NoEscape ransomware first appeared in May 2023. It is generally believed to be a successor to the Avaddon ransomware group that was disbanded in 2021, and has recently been in the news after warnings were issued about the gang’s targeting of the healthcare sector.
The NoEscape ransomware group appears to not be keen on targeting organisations based in former Soviet countries, offering a free decryptor if companies within Russia’s sphere of influence are breached. One imagines that the operators of the ransomware have adopted this policy in an attempt to reduce the chances that they will find themselves at odds with local law enforcement agencies.
