Over 80% of Sports Organizations Targeted by Hackers in the Last Year

The sports industry has become a magnet for cybercriminals, as Darktrace’s June 11 report shows that 84 % of professional teams, venues and governing bodies were targeted in the past year. More than half—57 %—saw repeated intrusions, underscoring that attacks are rarely isolated events. High‑visibility fixtures such as the FIFA World Cup amplify the incentive for threat actors, who can leverage the global spotlight to maximize disruption, financial gain, or reputational damage. This surge forces executives to treat cybersecurity as a core operational priority rather than a peripheral IT issue.

Attackers exploit several vectors unique to sport. Ransomware and DDoS campaigns aim to cripple stadium infrastructure during live events, while phishing campaigns—19 % more prevalent than in other sectors—target executives and ticketing partners. Darktrace analyzed 116 000 phishing messages, finding 84 % bypassed DMARC authentication and 37 % employed novel AI‑assisted social‑engineering tricks. The supply chain further widens the attack surface: ticketing platforms, broadcasters and cloud providers serve as trusted gateways, allowing malicious actors to infiltrate organizations through weaker third‑party defenses.

Defending against this onslaught requires a shift from signature‑based tools to behavioral security models. Darktrace recommends monitoring both human and AI activity to detect anomalous logins, data movements, or automated agent actions that could signal an imminent breach, especially during live games. Strengthening DMARC policies, conducting regular phishing simulations, and hardening third‑party integrations are immediate steps. As fan data, athlete contracts and sponsorship details remain lucrative targets, robust, adaptive security not only protects revenue streams but also preserves the fan experience and the sport’s global brand integrity.