Club Atlético River Plate has been the victim of a cyberattack by the ransomware group Qilin, cybersecurity specialists have reported. The attack was discovered this Friday, December 19, 2025, following the club's publication on the criminal organization's Data Leak Site (DLS) on the Darkweb. According to information obtained by Agencia Noticias Argentinas, the attack was uncovered on Friday, December 19, 2025. Initial technical reports indicate a significant compromise of sensitive information and access to the institution's digital infrastructure. Spokespersons for River Plate club communicated to Agencia Noticias Argentinas that no member information has been compromised, although it remains to be seen what type of data will be revealed. The scope of the cyberattack According to data leaked by the attackers, the impact of the ransomware would affect thousands of people linked to the club: Affected users: Data belonging to 4,042 users was found to be compromised. Employees: The report indicates that one employee was directly compromised in the breach. Third-party credentials: 13 credentials of employees from third parties were also identified as having been breached. Attack surface: The criminal group analyzed an external attack surface composed of 75 entry points. Who is the Qilin group The Qilin group is a ransomware organization that operates under the Ransomware-as-a-Service (RaaS) model and is known for leaking information about its victims to extort them.
