Security News

Toronto-based Citizen Lab has warned that an app required by Beijing law to attend the 2022 Olympics contains vulnerabilities that can leak calls and data to malicious users, as well as the potential to subject the user to scanning for censored keywords. The playbooks [PDF], which are documents that serve as info guides for Olympics-goers, instruct international visitors to download the app and use it to monitor health for 14 days prior to their departure for China.

The mobile app that all attendees and athletes of the upcoming Beijing Winter Olympics must use to manage communications and documentation at the event has a "Devastating" flaw in the way it encrypts data that can allow for man-in-the-middle attacks that access sensitive user information, researchers have found. MY2022 is an app mandated for use by all attendees - including members of the press and athletes - of the 2022 Olympic Games in Beijing.

The official app for Beijing 2022 Winter Olympics, 'My 2022,' was found to be insecure when it comes to protecting the sensitive data of its users. Finally, the app violates China's own laws regarding privacy protection.

Think back to 1992, when the USA "Dream Team", critically acclaimed as the greatest basketball team of all-time, secured the gold medal at the Summer Olympic Games in Barcelona. To assemble a Dream Team of cyber professionals who can protect enterprises from modern threats, organizational leaders must prioritize the right balance of collaborative minds, complementary specializations, diverse perspectives and - most importantly - a consistent willingness to work in unison.

The Tokyo Olympics, set to open Friday night, are already being targeted by threat actors - however, the Federal Bureau of Investigation's Cyber Division has issued a chilling warning the Games' TV broadcast is likely to be plagued by attacks, since it will be the only way to view events now that spectators have been barred due to COVID-19 concerns. "Adversaries could use social-engineering and phishing campaigns in the leadup to the event to obtain access or use previously obtained access to implant malware to disrupt affected networks during the event," the FBI notification said.

The Federal Bureau of Investigation warns of threat actors potentially targeting the upcoming Olympic Games, although evidence of attacks planned against the Olympic Games Tokyo 2020 is yet to be uncovered. As the FBI explains, attacks coordinated by criminal or nation-state threat actors targeting the Tokyo 2020 Summer Olympics could involve distributed denial of service attacks, ransomware, social engineering, phishing campaigns, or insider threats.

TechRepublic's Karen Roby spoke with Ray Canzanese, director of threat research at Netskope, about cybersecurity and the Tokyo 2020 Olympics, being held July 23-Aug. 8, 2021. In other words, the Olympics come around and what's going to happen from a ransomware point of view is really just that the Olympics are a major cultural event that attackers will leverage to try to trick you into doing something, giving them access, installing software, some way that ends up infecting you with ransomware.

Olympic Destroyer was unleashed at Seoul in 2018. It could happen again, cybersecurity expert says.

Six men have been named as Russian military hackers and accused of spreading malware, disrupting the Olympics in retaliation for Russia's doping ban, and meddling with elections as well as probes into Novichok poisonings. Targeted South Koreans, athletes, the International Olympic Committee officials, and more, with spear-phishing and malicious mobile apps in the run-up to the 2018 Winter Olympics in Pyeongchang, South Korea.

I'd like to thank everybody for joining us today for our webinar, "5G, the Olympics and Next Generation Security Challenges." Today, we are going to be hearing from a couple of experts in the arena: Russ Mohr who is an engineer and Apple Evangelist at MobileIron; and also Jerry Ray, who is a COO at SecureAge - he works in Tokyo quite a bit, so he will have some feet-on-the-ground information for us, which is great. Something to note about our agenda, clearly: The hook here is that we're going to use the Tokyo Summer Games as a jumping off point to discuss what's possible with 5G technology rolling out.