The Sport Admin Leak reveals details about Prince Carl Philip
One afternoon in March 2025, a man set out on a jogging trip at a scenic place in the Stockholm area. About seven kilometers were felled at the charge.
The entire route was logged with GPS to a digital running service online. There anyone can see exactly where the jogging round went, every turn and road choices are clearly stated.
The man who took the jogging trip is Prince Carl Philip.
It is revealed in it Great data leaks from the SportAdmin app, where the Prince is one of two million Swedes who get their personal data cleared online.
A criminal hacking group called Ransomhub managed to steal large amounts of data from SportAdmin’s servers in January and recently leaked it on Darknet, after trying to push the company behind the app for money.
The reason why the Prince’s GPS-logged jogging is revealed is that he was registered in SportAdmin with a previously secret, anonymous email address. A quick search is all it takes to reach the running service, where the maps show exactly how he has moved.
In addition to jogging trips in the Stockholm area, the account reveals a recent trip abroad that the prince recently did. The running service also shows the alias that the prince seems to have used to stay anonymous online.
DN informed well in advance of this publication Hovet if it occurred. Since then, the account on the running service has been closed and no longer shows any maps or other information.
The royal house’s press service declines interview, but the deputy communications manager Johan Tegel writes in an email to DN:
« The Royal Court’s Security Department has knowledge of the information and has collaborated with relevant authorities. As this is a case concerning security, the court states decline to provide further information. »
The prince’s information shows how a data leak of this kind can reveal even one of Sweden’s most famous people. This is despite the fact that he has taken steps to hide his identity online with an anonymous email address and an invented name.
Once the leak was out, it only took seconds to connect the email address in sports administration with the running service, which revealed both Prince’s alias and his running and travel habits. At least one to a social media account can be linked to the prince via the leak.
Dick Malmlund is security consultant With long experience in personal protection and was former security manager at Svensk Handel. He sees just network services that show where the person is, he sees as extra risky.
When Dick Malmlund takes on a person who needs protection, such services are often the first thing he wants to remove.
– The first day when I get a client, we clean such information. From then on there is a special train order for social media. You must not register, we remove and shut down accounts, he says.
Having a protected identity makes it more difficult for someone who wants to hurt the person to find addresses and other things, but that is not enough. Leaks of information can cause great damage.
– Everything is not solved for a protected identity. For it to be effective, you have to think about everything around. Someone can neglect, says Dick Malmlund.
Prince Carl Philip is far from the only public person in the database. Several other members of the royal family are included, as well as politicians at the highest level. Among them several ministers in the current government.
For many of the ministers, information that is not previously public is revealed, including contact information such as telephone numbers and private email addresses. A top politician is included in the leak, even though the person has protected personal data which means, among other things, the address to be kept secret.
DN has informed the government office about the content of the leak and sought the security department for an interview, but received no comment.
Sensitive information about rulers can attract interest from other countries’ intelligence services.
« The information can be useful for an intelligence service in several ways, » says Tony Ingesson, associate professor and researcher in intelligence analysis at Lund University.
– For a very highly profiled person, the information can often be accessed anyway. But this provides a lot of information and facilitates mapping of people who are a little further down.
A foreign power Which through the leak gains access to a whole circle around a high -ranking person can benefit from the information, according to Tony Ingesson.
– Perhaps most obvious can be used for phishing (to deceive sensitive information) and data breaches. If you access several people who are close to the one who is your actual goal, then it lowers the threshold to be deceived. Especially if you can send messages from their real accounts.
The database also contains at least 80 current or former members of parliament who have registered with parliament.se email accounts.
Non -listed Lime Technologies is the company that owns sports administration. They have constantly emphasized that they have never communicated with, or paid any money, the extortion group behind the attack.
Lime Technologies says Now know how the attack went, but do not want to go out with any details.
« We have a clear picture of what has happened and have of course taken further action, » writes communications manager Jennie Everhed in an email to DN.
« We understand that this situation is tough for the associations and their members. »
On February 12, just under a month after the data breach, Lime Technologies reported a sharply rising profit and increased the dividend to its shareholders. The attack was then not significantly assessed by the company’s financial results.
« You get pissed and sad about such a type of social development where more and more companies are being subjected to attacks from criminal networks, » said CEO Nils Olsson to Dagens Industri About the data breach.
Read more:
Two million Swedes are revealed – may be the biggest leak so far
