Russian Cyber Threats Loom Over Paris Olympics 2024

The Paris 2024 Olympic Games are set to kick off on July 26, featuring athletes from over 200 nations. Although Russian athletes will participate, they won’t officially represent Russia due to the ongoing conflict in Ukraine. However, cybersecurity experts warn that Russia is likely to play a significant role in the unofficial sport of hacking, posing a major threat to the Games.

Threat intelligence from Mandiant, a subsidiary of Google, reveals that Russian threat groups are the most significant cybersecurity risk for the upcoming Olympics. The report highlights an elevated risk of Russian cyber activities against France due to its support for Ukraine following Russia’s invasion in February 2022. Tim West, director of threat intelligence at WithSecure (formerly F-Secure Business), echoes these concerns. He anticipates that the Paris Olympics will face a higher risk of cyber attacks than previous events, attributing this threat to Russia. “Hacktivists linked to pro-Russian states are likely to attempt to disrupt the Olympics,” West predicts.

West’s report, “Cyber Threats To Paris 2024,” warns that Russia has both the capability and intent to compromise the Games. He notes that Russia can deploy human operations alongside cyber-attacks and is capable of targeting various networks, including operational technology. “Russia is adept at using both hacktivist groups and state resources to carry out its cyber operations,” West explains. This tactic often involves using hacktivist groups as a cover for state-sponsored actions, a method commonly employed by Russian hackers to mask their true intentions.

Recent research by FortiGuard Labs reveals a surge in hacktivist activity by pro-Russian groups targeting the Olympics. Groups such as LulzSec, noname057(16), Cyber Army Russia Reborn, Cyber Dragon, and Dragonforce have announced their intent to attack the Games. FortiGuard’s analysis indicates that these hacktivists plan to target critical infrastructure, media channels, and affiliated organizations to disrupt the event, undermine its credibility, and amplify their messages on a global scale.

Stephen Kowski, field chief technology officer at SlashNext Email Security+, warns that such attacks could escalate to real-world violence or severely disrupt the Olympics and democratic processes in France. The Olympics attract a mix of government officials, corporate leaders, celebrities, and high-net-worth individuals, creating a prime target for espionage. Former FBI Special Agent Jason Hogg, now a cyber-risk analyst at the Matunuck Group, emphasizes the scale of the cybersecurity challenge. He notes that the Games represent a significant issue for cybersecurity experts, who are working diligently to bolster defenses.

“A collaborative effort involving public and private sectors has been crucial in preparing for these threats,” Hogg says. The Agence nationale de la sécurité des systèmes d’information (ANSSI), France’s national cybersecurity agency, the International Olympic Committee, and the Paris 2024 Organizing Committee have joined forces to enhance cybersecurity measures. These efforts include implementing a segmented network architecture to isolate critical systems, developing detailed incident response plans to ensure quick reactions to potential attacks, and establishing a comprehensive threat intelligence sharing program. Additionally, user awareness and education are integral to these defenses, with an online information hub available for those concerned about cybersecurity during the Games.

As the Paris Olympics approach, the heightened cybersecurity measures aim to mitigate the risks posed by Russian hackers and other malicious actors, ensuring that the event can proceed smoothly and securely.