Someone hijacked the Argentine Football Association’s email system and used it to send angry messages about refereeing decisions. The AFA says it wasn’t them. A hacker group says it was, and claims to have a lot more than just email access.
The breach came to light after Argentina’s 3-2 victory over Egypt in the last-16 round of the 2026 FIFA World Cup on July 8. Unauthorized emails were sent from AFA’s institutional accounts criticizing referee Francois Letexier’s officiating and alleging corrupt decisions influenced the match outcome.
What the hackers claim to have
The attack has been attributed to a group operating under the alias “Hossam Hassan,” which claimed responsibility for infiltrating AFA’s systems. The group says it stole the organization’s database, a trove that reportedly includes emails, hashed passwords, national IDs, phone numbers, IP addresses, and profile pictures.
Hashed passwords are better than plaintext ones, but depending on the hashing algorithm used, they can still be cracked. National IDs and phone numbers paired with email addresses create a particularly dangerous combination for phishing and identity theft.
AFA responded on July 10 with a statement declaring the emails were “neither generated nor authorised by our team,” urging anyone who received the messages to disregard them entirely.
As of the latest updates, there’s no confirmed financial loss or evidence of broader system compromise beyond the email incident itself. The investigation is ongoing.
The crypto angle nobody asked for, but actually matters
No cryptocurrency or blockchain platforms have been directly linked to the breach. But AFA has established commercial partnerships within the crypto space, part of a broader trend where major sports organizations have embraced blockchain-based sponsorships, fan tokens, and digital collectibles. When an organization with those kinds of ties gets its database compromised, the ripple effects deserve attention.
A stolen database containing staff and member credentials could theoretically be used to probe connected platforms, especially if password reuse is in play.
Broader context and what’s at stake
The alias “Hossam Hassan” carries obvious Egyptian connotations, and the breach followed a match between Argentina and Egypt. The unauthorized emails specifically targeted the referee’s decisions in that game, suggesting the attack was motivated by the match outcome rather than financial gain.
Separately, unverified reports have circulated regarding an FBI investigation into AFA’s US financial operations, reportedly valued around $300 million. These reports are said to be unrelated to the cyber incident.
Disclosure: This article was edited by Editorial Team. For more information on how we create and review content, see our Editorial Policy.

59 minutes ago
16









English (US) ·