Back

Argentina Players' Passport Data Leaked Before World Cup

Severity: Medium (Score: 48.6)

Sources: Indiablooms, Neherald

Published: 2026-06-11 · Updated: 2026-06-11

Keywords: passport, data, security, argentina, players, world, massive

Severity indicators: pla, data leak

Summary

A data breach occurred involving the passport information of players from the Argentina national football team, including Lionel Messi, ahead of a friendly match against Iceland. The leak happened when an official team sheet was circulated without proper redaction, exposing sensitive passport numbers of all Argentine players. The incident took place at Jordan-Hare Stadium in Alabama, raising concerns about data-handling protocols in the lead-up to the FIFA World Cup 2026. Iceland players were not affected as their details were not included in the document. The breach has prompted inquiries to FIFA and the tournament organizers for clarification. Despite the off-field chaos, Argentina secured a 3-0 victory in the match, with Messi scoring twice. This incident adds to the growing list of administrative issues surrounding the tournament preparations. Key Points: • Passport data of Argentina players leaked due to improper document handling. • Incident occurred during a friendly match at Jordan-Hare Stadium in Alabama. • FIFA and organizers contacted for clarification on data security protocols.

Detailed Analysis

**Impact** The passport data of all Argentine national football team players listed for a friendly match against Iceland was leaked, exposing sensitive personal information. The breach affects the Argentina team specifically, with no impact reported on the Iceland players. The incident occurred in Alabama, USA, ahead of the FIFA World Cup 2026 co-hosted by the United States, Mexico, and Canada. Operational consequences include potential identity theft risks for players and reputational damage to event organizers and FIFA. **Technical Details** The breach resulted from an official team sheet containing unredacted passport numbers being circulated publicly instead of internally. No malware, CVEs, or advanced attack techniques were reported; the incident appears to be a procedural failure in data handling and document redaction. The exposure occurred during the distribution phase of the kill chain, specifically at the data disclosure stage. No indicators of compromise (IOCs) were provided. **Recommended Response** Immediate review and enforcement of data handling and redaction protocols for all official documents should be conducted. Restrict access to sensitive team information and implement strict controls on document distribution channels. Monitor for any misuse of the leaked passport data and coordinate with law enforcement and FIFA for incident management. No technical patches or malware detections are applicable based on available information.

Source articles (2)

  • Massive security blunder: Messi, Argentina players' passport data leaked ahead of World Cup — Indiablooms · 2026-06-10
    A serious data breach has sparked fresh controversy around the FIFA World Cup 2026 after passport information of players from the Lionel Messi-led Argentina national football team was reportedly leake…
  • Massive security blunder: Messi, Argentina players' passport data leaked ahead of World Cup — Neherald · 2026-06-11
    According to a Reuters report, the security lapse occurred when an official team sheet—containing sensitive passport numbers—was circulated without proper redaction. Sensitive data accidentally publis…

Timeline

  • 2026-06-10 — Data breach reported: Passport information of Argentina players leaked due to an unredacted team sheet shared publicly.
  • 2026-06-10 — Argentina defeats Iceland: Argentina won the friendly match 3-0, with Messi scoring two goals, despite the data breach controversy.
  • 2026-06-11 — Follow-up reporting on data breach: Further details on the passport data leak were published, confirming the breach and its implications for FIFA World Cup preparations.

Related entities

  • Data Breach (Attack Type)
  • Argentina (Country)
  • Canada (Country)
  • Iceland (Country)
  • Mexico (Country)
  • United States (Country)
  • CWE-200 - Exposure of Sensitive Information (Cwe)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed