Search This Blog
Powered by Blogger.

Blog Archive

Labels

Load More
Trendy Right Now

Popular Posts

Showing posts with label Sport Events. Show all posts
Sport Events
ANSSI Cyber Attacks DoS Dos Attacks Olympics Paris Olympics Sport Events

Paris 2024 Olympics Faced Over 140 Cyberattacks, No Disruptions Reported

 

During the Paris 2024 Olympics, French authorities reported over 140 cyberattacks, but none of these incidents disrupted the sporting events. The French government’s cybersecurity agency, Anssi, maintained a high state of alert throughout the games, anticipating potential threats to the organizing committee, ticketing systems, and transportation infrastructure. Given the scale and visibility of the Olympics, cybercriminals often see such events as prime targets for malicious activities. 

From July 26 to August 11, Anssi recorded 119 reports of low-impact “security events.” In addition, there were 22 more serious incidents where “a malicious actor” successfully infiltrated a victim’s information system. These attacks targeted government entities, as well as infrastructure related to sports, transportation, and telecommunications. Despite these incidents, the overall impact on the Olympic Games was minimal. Anssi noted that about one-third of the incidents involved system downtime, with half of these caused by denial-of-service (DoS) attacks. 

These attacks are designed to overwhelm servers with traffic, rendering them inaccessible. Other cyber incidents included attempted system compromises, data breaches, and other forms of malicious activity. However, Anssi emphasized that all cyber events during the Olympics were generally of low impact, highlighting the effectiveness of the cybersecurity measures in place. A significant cyberattack occurred in early August, when ransomware targeted the Grand Palais, an Olympic venue, along with approximately 40 other museums across France. 

Ransomware attacks typically exploit security flaws to encrypt and block access to computer systems, demanding a ransom payment to restore access. Despite the attack, Anssi confirmed that none of the information systems critical to the Olympic Games were affected. While the Paris Olympics experienced fewer cyberattacks than the Tokyo 2021 Games, which reported 450 million cyber operations, the threat level remained high. In fact, Marie-Rose Bruno, director of technology and information systems for the Paris Games, had anticipated “eight to ten times more” cyberattacks than those seen in Tokyo. 

The Paris 2024 Olympics faced a considerable number of cyber incidents, but thanks to robust cybersecurity measures, these attacks had little to no impact on the events. The proactive efforts of French authorities and cybersecurity experts ensured that the games proceeded smoothly, without major disruptions to the athletes or spectators.
Read more »
Threat Landscape
Cyber Security Cyber Threats Professional Sports Sport Events Threat Landscape

Professional Sporting Events: The Next Frontier of Cybersecurity?

Professional sports has a cybersecurity issue. Last year, the National Cyber Security Centre discovered that 70% of sports organisations face at least one cyberattack each year. This indicates a significant increase from general companies, of which only 32% reported dealing with cyber incidents or damaging cyber activities. 

Multiple factors are influencing this trend. For starters, high-profile sporting events have become more digital in recent years. Sports teams, major league and global sporting associations, and entertainment venues have significant information, such as insights into athletic performance and each team's competitive advantages, as well as sensitive consumer information. Threat actors are attempting to capitalise on the global sports industry, which is predicted to reach $623.6 billion by 2027. 

Additionally, large-scale professional sports environments involve various connected gadgets and interconnected networks. For example, when Microsoft assisted in providing cybersecurity support for critical infrastructure facilities during a major global sporting event, we performed over 634.6 million authentications while protecting over 100,000 endpoints, 144,000 identities, and 14.6 million email flows. 

High-profile sporting events come quickly, so security teams must have clear visibility and control over their whole digital estates. This covers participants' personal devices, as well as the team or venue's Web and social media presence, registration and ticketing platforms, mass notification systems, electronic signage, and other features. 

Continue reading to learn about the top cybersecurity threats to professional sports teams and event venues, as well as how you can assist safeguard against them. 

Three major cyber-threats for sports venues 

No two venues are the same, and security teams must consider a range of criteria, including the arena's physical location, event participants, and crowd size, to develop an appropriate cyber-risk profile. However, parallels can still be noticed amongst high-profile sporting events. Here are some frequent cyber-risks to consider when securing large events and venues. 

Connected video boards and digital signage: Digital displays might be an underutilised entry point into a venue's network. When developing a proactive defence and planning for massive events, security teams should adhere to zero-trust concepts such as blocking superfluous ports and conducting periodic network scans. This allows teams to scan for rogue wireless access point upgrades and patch software as necessary. Furthermore, teams should prioritise applications that provide an encryption layer for all data. 

Wi-Fi hotspots, mobile apps, and QR codes: Human error and individual guest behaviour might be among the most unpredictable threats for security teams to address. General cybersecurity education can be extremely beneficial in this area. Begin by encouraging event participants to update their apps and personal devices with the most recent software fixes. Similarly, guests should be cautioned not to use public Wi-Fi to access critical private data, and to exercise caution when responding with unauthorised links, files, and QR codes. 

Stadium access and infrastructure equipment: Critical infrastructure is another popular target for online criminals. Security teams can enhance stadium access and infrastructure equipment protection by creating logical network segments between IT and operational technology (OT) systems. This helps to minimise cross-device access to data, reducing the potential impact of a cyberattack. 

Cyber attacks to sporting events present a unique challenge. Because of the rapid speed of professional sports and large-scale events, detecting these threats might be challenging. However, by sharing information on the most recent attack vectors and cybersecurity best practices, we may help to create a more secure digital world for both sports fans and professionals.
Read more »
Subscribe to: Posts (Atom)