The National Basketball Association (NBA) is notifying individuals that their personal data was stolen in a data breach at a third-party service provider.
Last week, the NBA started sending out notification emails to an unknown number of individuals, to inform them that their information was compromised in a data breach at a third-party provider of newsletter services.
The incident has resulted in the theft of names and email addresses, with no other types of personal information impacted, reads a copy of the notification email shared on Twitter.
“There is no indication that our systems, your username, password, or any other information you have shared with us have been impacted,” the NBA told the affected individuals.
The league cautioned the notification email recipients that the stolen information could be used in phishing and social engineering attacks, and encouraged them to remain vigilant towards any suspicious correspondence that may appear to come from the NBA or partner entities.
“Please note, we will never ask you to send us personal account information, such as username, by email and we will never ask you to give us your password under no circumstances,” the notification email reads.
The NBA did not name the impacted service provider and has shared no information on the type of cyberattack they suffered or the number of impacted individuals. SecurityWeek has emailed Warner Media for additional details on the matter and will update this article as soon as a reply arrives.
It’s unclear if it’s related, but marketing automation platform Mailchimp, which many companies are using to send emails, recently disclosed a cybersecurity incident impacting more than 130 of its customers.
Part of Warner Media, the NBA is a global sports and media business that includes five professional sports leagues, namely NBA – the North American basketball league composed of 30 teams (29 in the US and one in Canada) –, Women’s NBA (WNBA), NBA 2K League, NBA G League, and Basketball Africa League.
Related: Millions of AT&T Customers Notified of Data Breach at Third-Party Vendor
Related: Latitude Financial Services Data Breach Impacts 300,000 Customers
Related: Data Breach at Independent Living Systems Impacts 4 Million Individuals
