Cybersecurity firm Resecurity sees the attack as part of Iran’s wider propaganda push against Saudi Arabia, the US, and Israel—underscoring rising risks to global sports events.
Cyber Fattah exploited phpMyAdmin to access Saudi Games databases, leaking SQL dumps through Dark Web user “ZeroDayX.
The breach exposed data on 6,000+ athletes and visitors, including IDs, medical records, bank info, IT staff credentials, and details of Saudi officials.
Who is Cyber Fattah?
Cyber Fattah, or the “Iranian Cyber Team,” is a hacktivist group linked to Iran’s cyber apparatus and part of the “Holy League,” targeting Israel, Saudi Arabia, and the U.S. in alignment with Tehran’s strategic interests.
Cyber Fattah works alongside groups like 313 Team, LulzSec Black, and Cyber Islamic Resistance, with past attacks including Israeli website defacements and a cyberattack on an Israeli solar firm.
What’s on the Line
This incident carries serious implications:
- Compromised data: Passports and account details may be misused for identity crimes or blackmail.
- Operational Vulnerability: Compromised records may pose a threat to Saudi Arabia’s internal event protection.
- Brand Damage: This cyberattack weakens Saudi Arabia’s push to lead on the global sports stage.
- Worldwide Warning: The breach highlights how global and regional sports events face rising cyber threats.
