Welcome to the First Column IT Tech Blog

HomeBlog
Cybersecurity Lessons From an NFL Draft Day Prank

Cybersecurity Lessons From an NFL Draft Day Prank

May 14, 2025

Sometimes, a real-world event vividly illustrates the importance of digital security basics. The recent NFL draft provided just such a case, involving an unlocked iPad, a prank call, and significant consequences.

The story centers around Shedeur Sanders, a highly anticipated draft prospect, and Jeff Ulbrich, the Atlanta Falcons' Defensive Coordinator. To maintain security during the draft, prospects use special phone numbers known only to NFL teams. Ulbrich had this sensitive contact list stored on his iPad.

Days before the draft, Ulbrich's son, Jax, used the unlocked iPad, discovered Sanders' private number, and recorded it. On draft day, Jax and a friend used the number to prank Sanders, posing as the New Orleans Saints GM, claiming they were about to draft him. This prank came as Sanders experienced a draft-day slide, falling from a projected first-round pick to the 144th selection; in the fifth round.

The incident didn't stay private. Video emerged, leading to Jax Ulbrich issuing a public apology. More tangibly, the NFL fined Jeff Ulbrich $100,000 and the Falcons organization $250,000 for the security lapse. Beyond the fines, the event potentially cost Sanders millions (the salary difference between early and later picks is vast) and undoubtedly created trust issues within the Falcons organization.

Lessons Beyond the Gridiron

There are lessons here that are relevant for any business; not just billion-dollar sports franchises. What can you learn from this NFL fumble? Here are a few things: 

  • The imperative of authentication - An unlocked device containing sensitive information was the root cause. Every phone, tablet, and computer, particularly those used for work, needs robust password protection or other authentication methods.
  • Access control matters - The NFL's system of secret numbers aimed for limited access. However, that sensitive data wasn't secured on the coordinator's device. Businesses must ensure data access is restricted and protected wherever it's stored or accessed.
  • Recognizing deception - The prank call, using impersonation for deceptive purposes, is functionally similar to a phishing attack. It's a potent reminder to treat unexpected communications with caution and verify requests through established channels.

This situation demonstrates that even simple security oversights can have costly and far-reaching consequences, regardless of the industry.

If you would like help establishing a cybersecurity strategy that aims to keep downtime to a minimum and help you get your hands on beneficial software and strategies that you may not have at the moment, give First Column IT a call today at (571) 470-5594.

TAGS
Current Events
TAGS
Security
TAGS
Privacy
Previous Post
April 6, 2026
The Business Reality of Hardware Lifecycles
Most business owners treat their office computers like breakroom microwaves: they expect them to work until they physically stop turning on. It’s a logical approach for a toaster, but in the professional world, a computer becomes "old" long before it actually breaks.
READ MORE
April 3, 2026
Why Password Length is More Important Than Complexity
With automated threats on the rise and taking over the cyberthreat landscape, you need as many ways to stay safe online as possible. Naturally, one of the most talked about topics is login security. There’s a lot of good password advice out there, but the most helpful piece isn’t repeated often enough: just make it longer.
READ MORE
April 1, 2026
How to Manage BYOD (Without the Headache)
With smartphones as accessible as they are, it’s no small wonder how company-only policies have all but faded into obscurity in the workplace. Whether you allow it or not, you can bet that your team is using their smartphones to get work done, whether it’s checking email from their couch or sending you a quick DM. In other words, you need a Bring Your Own Device (BYOD) policy, as it is practically the new accepted standard.
READ MORE

Have a project in mind?

Start with our free consultation for VA, DC and MD companies. We will provide a detailed proposal and firm quote based on your specific IT support needs. All at a predictable monthly cost per seat.
Free Consultation - Sign Up Here
About us
First Colum IT

The dedicated team at First Column IT focuses on furnishing complete technology solutions throughout the Virginia, Washington D.C., and Maryland area. We construct advanced cybersecurity, managed IT support, IT consulting, and compliance management solutions for those who depend on technology to provide exceptional service to their clients. We handle the complexities of technology so your business can thrive.

ADDRESS
8462 Virginia Meadows Dr
Manassas, VA 20109
PHONE
Existing Customers: (703) 880-6683New Customers: (571) 470-5594
SOCIAL
Support
Request SupportRequest A QuoteContact us

Copyright 2025 © First Column IT -  (Privacy)