Dark Web Shows Cybercriminals Ready for Olympics. Are You?

 The Growing Threat of Cyberattacks at Major Sporting Events

• Millions, even billions, of people watch major sporting events like the World Cup, Super Bowl, and Wimbledon. For instance, Argentina’s thrilling win over France in the final game of the Qatar 2022 World Cup drew 1.5 billion viewers globally. 
• The upcoming Olympics in Paris, the biggest event of all, will likely surpass the 3 billion viewers who watched the 2020 Tokyo Olympics.

Dark Web Shows Cybercriminals Ready for Olympics. Are You?

• However, these events are prime targets for cybercriminals. Over the past decade, cyberattacks on major events have skyrocketed, from 212 million attacks during the London 2012 Games to a staggering 4.4 billion during the Tokyo 2020 Games. 
• These attacks often aim for financial gain through scams, digital fraud, or stealing valuable data from attendees, viewers, and sponsors. Excited fans frequently overlook the risks when buying tickets, booking accommodations, or purchasing memorabilia, making them easy targets.
• Many fans, desperate to watch events, fall for malicious websites promising free access, only to have their devices compromised or personal data stolen. Additionally, with global media attention, criminals with political motives often attempt to disrupt significant sites or services to spread their message.

Paris 2024 Olympics: A Target for Cybercriminals

• According to a new report from FortiGuard Labs, this year’s Olympics in Paris have been a target for cybercriminals for over a year. The report, based on public information and proprietary analysis, outlines planned attacks, including third-party breaches, infostealers, phishing, and malware like ransomware.
• FortiGuard Labs has noticed a significant increase in cyber resources targeting the Paris Olympics. These attacks focus on French-speaking users, government agencies, businesses, and infrastructure providers. Since mid-2023, darknet activity targeting France has surged by 80% to 90% and remained high through early 2024. The dark web has become a hub for cybercriminals, highlighting their detailed planning and execution for these attacks.

The Rising Cybersecurity Threats at Major Events

Cybercriminals are increasingly targeting major events like the Paris Olympics. They're using advanced tools to steal personal data (PII), sell stolen credentials, offer phishing kits, and exploit tools tailored for the Paris Olympics. French databases with sensitive information, such as names, birth dates, ID numbers, emails, and addresses, are being sold. Lists of compromised usernames and passwords (combo lists) of French citizens are also available.

Hacktivist Activity

• Hacktivist activity is rising, especially from pro-Russian groups like LulzSec, noname057(16), Cyber Army Russia Reborn, Cyber Dragon, and Dragonforce, in response to Russia and Belarus not being invited to the Olympics. Other active groups include Anonymous Sudan, Gamesia Team, Turk Hack Team, and Team Anon Force.

Phishing Kits and Infostealers

1. Phishing kits make it easy for cybercriminals to create convincing phishing emails. Many typosquatting domains mimic the official Olympics ticket website, scamming users out of their money. Numerous fraudulent websites claim to sell Olympic tickets, and scams impersonate major brands like Coca-Cola, Microsoft, Google, and the World Bank, targeting users in the U.S., Japan, Germany, France, Australia, the U.K., and Slovakia.

2. Infostealer malware like Raccoon, Lumma, and Vidar are actively stealing sensitive information such as passwords, credit card details, and cryptocurrency wallets. Raccoon is the most active, accounting for 59% of detections.

Conclusion

The Paris 2024 Olympics are a prime target for cybercriminals and hacktivists. Fake ticketing platforms, fraudulent merchandise, and identity theft tactics threaten financial loss and public trust. Political motives make the Olympics an attractive target for disruption.

Advice for Travelers

• Travelers to the Olympics should be aware of cyber threats, such as public Wi-Fi interception and fraudulent activities. VIPs, including government officials and executives, should take extra precautions.

Recommendations and Mitigation Strategies

1. Employee and User Training: Regular training on recognizing social engineering lures, deceptive emails, and fake websites.

2. Public Awareness Campaigns: Educate attendees on cybersecurity threats and how to identify and report phishing attempts.

3. Protect Sensitive Data: Use security tools to detect unusual activities and maintain encrypted backups.

4. Monitor the External Attack Surface: Continuously assess IT infrastructure for vulnerabilities and secure remote access.

5. Enforce Multi-Factor Authentication and Strong Passwords: Implement multi-factor authentication and monitor for compromised credentials.

6. User Endpoint Protection: Deploy antivirus and antimalware software on all devices and keep software updated.

7. Implement Patch Management: Regularly apply security patches to software and operating systems.

8. DDoS Protection: Use multi-layered DDoS prevention solutions and monitor network traffic for anomalies.

9. Prevent Ransomware Attacks: Regular updates, secure backups, and user education on ransomware prevention.

10. Website Defacement Prevention: Use web application firewalls to block malicious traffic.

11. Participate in Threat Hunting and Response: Conduct threat-hunting activities and isolate infected systems.

12. Leverage Cyberthreat Intelligence (CTI): Use CTI to gather real-time data on emerging threats and monitor darknet chatter for early indicators.

FAQ's

1) Cybercriminals at Olympics?

2) Criminals in the Olympics?

3) Latest Olympics World Cup news?