Ajax Hack Exposes Fan Data and Disrupts Ticket Sales Ahead of Season Finale
AI-generated from multiple sources. Verify before acting on this reporting.
AMSTERDAM — Ajax football club suffered a significant cyberattack on Saturday night that exposed personal data belonging to fans and allowed unauthorized access to match tickets, the Dutch club confirmed Sunday.
The breach was detected late Saturday as attackers infiltrated the club's digital systems. The intrusion compromised sensitive information including names, addresses, and payment details of supporters who had purchased season passes or single-game entries through official channels. Additionally, hackers gained control over ticket allocation mechanisms for upcoming fixtures, leading to unauthorized transfers and scalping attempts.
Club officials stated that no financial data was stolen from the club's own accounts, but individual fan records were accessed during the incident. The attack disrupted operations at Johan Cruijff ArenA just days before a scheduled high-profile match against Feyenoord in Rotterdam.
"We are working around the clock with cybersecurity experts to contain the breach and secure our systems," said Ajax Chief Operating Officer Mark Overmars in a statement released Sunday morning. "The safety of our fans' data is our top priority, and we urge anyone who purchased tickets recently to monitor their accounts for suspicious activity."
Law enforcement agencies have been notified, and investigations are underway to identify the perpetrators behind the intrusion. Dutch police confirmed they had opened a file on the incident but declined to provide details about potential suspects or motives.
The timing of the hack coincides with heightened security concerns across European football following similar attacks targeting other major clubs in recent months. Industry analysts note that sports organizations have become increasingly attractive targets for cybercriminals seeking both financial gain and notoriety.
Fans expressed frustration on social media after discovering unauthorized changes to their ticket reservations. Some reported receiving notifications about transfers they did not initiate, while others found themselves locked out of the official app used for digital entry credentials.
Ajax has temporarily suspended all online ticket sales pending a full system audit. The club is offering refunds or replacements for affected supporters and plans to implement enhanced security protocols before resuming normal operations.
Questions remain regarding how long attackers maintained access to internal networks and whether additional data beyond what was initially disclosed may have been exfiltrated. Security researchers warn that secondary impacts could emerge in coming days as the full scope of the breach becomes clearer.