The 2024 Olympics should be the target of billions of cyberattacks, “eight to ten times more than the Tokyo Games”threats accentuated by the cyber war in Ukraine, according to the director of technology of Paris 2024, Bruno Marie-Rose.
“The Olympics are one of the most attacked events in the world. It’s the CTO’s first nightmare.”explained the engineer and Olympic medalist in the 4×100 meter relay in 1988, inaugurating this Monday, April 24 in Madrid the test and integration center for the Olympic Games, installed by the French group Atos.
The sequel after the ad
Transmission of results in real time, broadcasting of images, accreditation of athletes, teams, officials… Information systems are at the heart of the operation of the Games.
In previous Olympics « in Tokyo (in the summer of 2021, editor’s note), we had 450 million attacks, already eight times more than in Rio in 2016. And 4.4 billion threats, or 800 per second. But zero impact on the Games”underlined Christophe Thivet, director at Atos of the technological integration of the 2024 Olympics. “In the event of threats, we were able to block all flows before impact. »
Already trying
“We expect everything”say the Games’ technology managers.
First, hackers who seek to steal organizers’ data, for example identification data. “We are already seeing attackers looking to target people, with connection attempts. We pay attention to our direction (to the organizing committee) »details Bruno Marie-Rose.
The sequel after the ad
Cyberattackers also look for security holes in already installed systems. “We see that some are trying. Our systems are continuously scanned. When you see the table of scans, it’s impressive. At the same time, it’s just normal. Already the number of attacks had increased eightfold between Rio and Tokyo.he adds.
Another risk is the diversion of data, for example from fake ticket sales sites. Hence an all-out surveillance.
What if hackers hacked into the Stade de France during the 2024 Olympics?
Atos, responsible for the cybersecurity of the Games and sponsor of the International Olympic Committee (IOC), deploys all the traditional means to identify vulnerabilities: ethical hackers, penetration tests, « bug bounty » (bug hunting), simulations of attacks and monitoring of the dark web to see if cybercriminal groups are talking about the Olympics, continues Christophe Thivet.
In addition to a cybersecurity center with several dozen experts already based in France, Atos teams are supported by the French Information Systems Security Agency (ANSSI).
The sequel after the ad
“We particularly fear state attacks”
The war in Ukraine intensifies the risk of attacks by pro-Russian groups, the two leaders also half-acknowledge.
“The Olympics are a target for geopolitical propaganda. The war in Ukraine is accompanied by a cyberwar. We particularly fear state attacks.”, explains the Chief Technology Officer of the Games. The decision on whether or not Russian athletes will participate will undoubtedly provoke increased cybervigilance.
An all-out cyberwar, the other dangerous Russian offensive against Ukraine
“The worst would be attacks that cause an interruption or disruption of competitions. One of my counterparts in 2018 at the Pyeongchang Olympics had seen a few systems turn off before the opening ceremony. I don’t want that to happen”notes Bruno Marie-Rose.
The Olympics, a target of choice
Whether it is to extort funds or to convey geopolitical messages, the Olympics represent a prime target for hackers, confirms Pierre-Antoine Failly-Crawford, cybersecurity expert from Varonis and former ethical hacker.
The sequel after the ad
“In particular the construction phase, with the presence of many external service providers who do not always have the same security policy, which leads to holes in the racket”he says.
US elected officials “worried” for the safety of athletes at the Winter Olympics
Malicious actors could seek to compromise the on-board systems, for example the GPS of the boats, or even to hack the thousands of wifi terminals which will be set up by the organizing committee, for example during the unprecedented opening ceremony on the Seine, watched around the world.
The Olympic Games are also never safe from denial of service attacks, these traffic jams of requests that can block sites.
