By Chelsea Conard, Cyber Threat Report Analyst, CTA
As the world prepares for the Paris 2024 Summer Olympics, the Cyber Threat Alliance (CTA) has released a supplemental threat assessment to build upon the insights gained from the Tokyo 2020 Summer Olympic Report. While the insights from Tokyo remain relevant, new challenges and potential threat actors necessitate a refreshed approach to safeguarding this global event.
The Paris 2024 Summer Olympics, scheduled from July 26 to August 11, and the Paralympics from August 28 to September 8, are set to be a prime target for cyber adversaries. To address these potential cybersecurity threats, the CTA and its members have established an Olympics Cybersecurity Working Group. This group is focus on protecting end-users, disrupting malicious actors, and enhancing overall cybersecurity through information sharing and preparation.
The CTA Report identifies Russia as the highest threat to the Games due to geopolitical tensions and its history of cyber activities. The ongoing conflict in Ukraine further escalates the risk, leading French President Emmanuel Macron to express certainty that Russia will attempt to target the Paris Olympics. Azerbaijan has also engaged in disinformation campaigns aimed at undermining Paris’s capability to host the Games, driven by regional political issues. Furthermore, cybercriminals are expected to target attendees and online viewers with financial scams, including phishing and cryptocurrency schemes.
While the Tokyo Olympics faced serious cyber threats, the Paris 2024 Games are expected to face even greater challenges. Cisco, an official partner for Paris 2024, anticipates eight times more threats to the Paris Games compared to Tokyo in 2021. One significant evolution in the threat landscape is the use of artificial intelligence (AI) in misinformation and disinformation campaigns. These campaigns are expected to leverage AI to create highly convincing and misleading narratives, aiming to disrupt the Games and undermine public trust. Phishing remains a primary threat vector, with malicious actors employing typo-squatting, where URLs mimic office sites, such as using “0lympic” instead of “Olympic.” This subtle switch between “0” and “O” can deceive users who may not recognize the look-alike character, resulting in data lost to fraudulent sites while simultaneously abusing the Olympic brand. Cryptocurrency scams are emerging as a significant threat, with fraudulent investments and transactions exploiting the Olympic brand to steal cryptocurrency.
France’s National Cybersecurity Agency (ANSSI) was appointed in July 2022 as the lead agency to coordinate the cybersecurity of the Games. ANSSI’s comprehensive strategy includes enhancing threat knowledge, safeguarding critical information systems, protecting sensitive data, raising awareness of cybersecurity, and preparing to respond to incidents. Additionally, the Protection and Security Directorate (PSE) and the l’Opérateur des systems d’Information Interministériels Classifiés (OSIIC) are integral to these preparations, ensuring robust defenses and effective crisis management.
Lessons from Tokyo remain highly relevant, underscoring the importance of well-known and tested cybersecurity techniques. Basic cybersecurity practices, such as network segmentation and multi-factor authentication are crucial. Information sharing is also essential, with established communication channels and regular engagement with key stakeholders, including government and commercial providers. Regular examination of critical systems is necessary to detect and respond to anomalies promptly, ensuring that systems remain secure through the Games.
CTA members are mobilized to monitor and respond to any potential incident during the Paris 2024 Summer Olympics. By building on the knowledge gained from Tokyo and adapting to the unique context for Paris, the CTA is committed to safeguarding the integrity and resilience of the Olympics, ensuring a safe and successful event for all participants and spectators.