The Olympic Games officially open in Paris on Friday 26th July. Threat Intelligence Analyst Craig Watt, who writes many of Quorum Cyber’s Threat Intelligence bulletins, malware reports, and threat actor profiles, assesses the potential cyber threats facing the Games. This article was initially published in Beta News, a website that provides original content to an audience of IT professionals and decision makers, on 24th July 2024.

Nation state-sponsored threat actors, organised cybercriminal cartels and hacktivists are expected be active during the 2024 Paris Summer Olympics and Paralympics, which will to be hosted against a fractured geopolitical landscape, including Russia’s war in Ukraine and Israel’s conflict with Hamas.

Nation state sabotage

Russian nation state-level cyber units will likely attempt to sabotage the 2024 Games, something that we have already observed in previous years during both the 2018 Winter Olympics as well as the 2020 Tokyo Summer Olympics in which Russia’s GRU military intelligence service engaged in cyber reconnaissance, targeting officials and organisations involved in the events. With Russia being suspended from participation as a sanction from the International Olympic Committee for its invasion of Ukraine, operations launched by Moscow-aligned cyber forces, such Sandworm (a group that attacked previous events with the “Olympic Destroyer” malware), will likely surge in retaliation. Motivation for these efforts would likely include retaliation, damaging the reputation of the Paris Olympics to promote its own 2024 World Friendship Games in September, and to counter to French President Emmanuel Macron’s pro-Ukraine position.

Ransomware

Ransomware attacks could cripple critical systems by encrypting data, whilst demanding ransoms to restore access through extortion efforts, potentially disrupting event schedules with delays.

Data breaches and scams

The Games will also provide a rich environment from which organised cybercriminal cartels will likely conduct widespread phishing operations, preying on vulnerable spectators throughout the summer period. The 2024 games will provide financially motivated hackers with the opportunity to target the retail sector, which will likely involve fraudulent online ticket sales with the objective of financial data and credential theft. These efforts will likely be primed by the sheer quantity of personal data available for compromise with thousands of athletes and officials present, as well as millions of spectators expected in attendance.

Critical infrastructure attacks

With the Olympics relying on a range of critical infrastructure assets, politically aligned hacktivists’ Distributed Denial-of-Service (DDoS) attacks will likely target energy grids and telecommunication networks which would result in the disruption of venue lighting and live streaming, severely hampering the event experience for spectators globally. Transport hubs would also likely be a prime target with France expected to see a significant influx of foreign visitors, including spectators, athletes, government officials, and journalists.

Event organisers have previously fallen short with executive support for robust cyber security strategies, availability of financial resources and human expertise, and sharing of intelligence. Fortunately, Paris 2024 organisers have been proactive and seem to have these bases covered.

The ever-evolving threat of cyber-attacks has resulted in the International Olympic Committee implementing cutting edge defence mechanisms, to ensure the Games allows for the demonstration of athletic excellence whilst maintaining the highest level of cyber resilience.

With President Macron stating that securing the Games is of paramount importance, training protocols to secure the event have already been put in place with artificial intelligence being leveraged for threat assessments and triage, as well as ethical hackers being recruited to stress test the security of the Olympics digital infrastructure. 

How can international agencies support France in this aspect?

The criticality of cyber security and law enforcement collaboration cannot be emphasised enough when it comes to ensuring the success and security of the 2024 Paris Summer Olympics. International agencies should raise public awareness to these cyber threats so that organisations with a business presence within the region can remain vigilant throughout the summer period to avoid potential business disruption.

These operations are already in place with event organisers collaborating with law enforcement and ANSSI (French National Agency for Information Systems Security to mitigate the impact of the anticipated cyber-attacks. The joint effort will involve the Technology Operations Centre (TOC), Cybersecurity Operations Centre (CSOC), and the National Strategic Command Centre (CNCS) coordinating in operational centres at undisclosed locations around Paris.

Discover Quorum Cyber’s cyber security services

If you would like to learn more about how Quorum Cyber could protect your organisation from cyber-attacks and breaches, please visit the services page and contact us on 0333 444 0041 or via [email protected] .