The World Anti-Doping Agency (WADA) confirms that, again today, the cyber hacker Group “Fancy Bear” released a batch of confidential athlete data on their website, which they illegally obtained from a Rio 2016 Olympic Games account of WADA’s Anti-Doping Administration and Management System (ADAMS).
This time, the group released data concerning 41 athletes from 13 countries, including: 4 from Australia; 7 from Canada; 1 from Croatia; 2 from Denmark; 2 from Germany; 6 from Great Britain; 5 from Italy; 1 from Japan; 2 from Serbia; 1 from South Africa; 2 from Switzerland; 1 from Sweden and 7 from the United States.
The athletes are from the sports of Athletics, Basketball, Cycling, Fencing, Field Hockey, Golf Gymnastics, Judo, Rowing, Rugby, Sailing, Shooting, Soccer, Swimming, Table Tennis, Volley Ball, and Water Polo.
WADA is taking this situation concerning athlete privacy very seriously. The incident response team that we have assembled is actively working with law enforcement agencies in Canada and elsewhere, and acting on the intelligence obtained through our investigations to prevent any further intrusions. We are also consulting with leading cyber security experts to ensure that no further information is accessed from the broader ADAMS.
The group obtained access to the Rio 2016 Olympic Games account through spear phishing of ADAMS users’ email accounts through which hackers obtained ADAMS passwords. We still have no reason to believe that they have accessed the broader ADAMS system.
The Agency is in contact with the relevant NADOs and IFs whose athletes are impacted by this latest data release so that they can provide them with the necessary support.
Should athletes, or other ADAMS users, have any questions or concerns; or, have encountered suspicious activity in relation to ADAMS such as phishing emails, they are encouraged to contact the helpdesk at email@example.com or on +1 514 904 8800.
Please note that WADA is committed to providing updates as circumstances evolve.