As the Winter Olympics commences over in South Korea, a big issue surrounding the games is cyber security, and it has been a long-standing concern for the International Olympic Committee (IOC) and host nations of the games since the early 2000s.
Previous Olympic Games have had to contend with a multitude of cyber threats, from the London 2012 Olympics – which experienced thousands of intrusion attempts and one false alarm threat to the power grid – to the Rio 2016 Olympics, which experienced a variety of hacks including disclosures of athletes’ personal data.
However, the 2018 Winter Olympics in Pyeongchang, South Korea, present further cyber security challenges, not just due to its location – 80km from the border with North Korea – and geopolitical tensions, but also due to major sporting events now becoming increasingly connected and integrated with technology.
The increased connectivity and use of technology has opened the games up to more vulnerabilities and potential cyber attacks. Not only are the Olympic Games available to view worldwide through a variety of broadcasting platforms, but smart technologies are now also increasingly used in the performance and judging of the sports themselves.
While most of the previous attacks have focused on ticket scams, availability of IT services and personal data, there are now more substantial cyber threats to stadium operations, infrastructure, broadcasting and participants and visitors to the games.
There might also be cyber attacks that compromise devices to spread propaganda or misinformation.
More recent Olympic Games have experienced attacks on broadcast operations and power systems seeking to limit viewer access to live broadcasts. For example, the 2012 London Olympics were hit by Distributed Denial of Service (DDoS) attacks from both alleged nation state hackers and hacktivists.
While these attacks have had limited success, it is possible that large scale disruptions to broadcasting could have severe consequences to events that rely on a large global audience and sponsorship.
Cyber security experts have already expressed concern over a number of cyber threats to Pyeongchang, particularly in relation to nation state activity. South Korea has previously accused North Korea of cyber attacks on the country, including one in 2013 that wiped numerous hard drives at South Korean banks and broadcasters.
Last month, a cyber security firm also uncovered a sophisticated and targeted cyber attack aimed to steal data from South Korean organizations associated with the games.
There have also been warnings of the possibility that communications or mobile networks are being monitored in the run up to the games. Communications could be at risk of surveillance by nation state actors for either geo-political gain – given the number of high-profile attendees from the 92 participating nations – or to gain a competitive edge in the competitions.
Network monitoring could also be used to target individuals or organizations in order to steal credentials or financial information. This is particularly relevant as North Korea has recently been accused of conducting widespread campaigns to steal cryptocurrency assets.
Hacking North Korea
However, these cyber threats extend beyond North Korea. Fancy Bear, a hacking group believed to be linked to the Russian government which rose to prominence in 2016 after it released sensitive data on Olympic athletes stolen from the World Anti-Doping Agency (WADA), continues to pose problems.
In January 2018, one cyber security firm discovered spoofed domains imitating the WADA, the US Anti-Doping Agency and the Olympic Council of Asia, which were likely to be associated with the group.
In response to these threats, the South Korean government and Pyeongchang organizing committee have invested around £850,000 into cyber security measures, as well as hiring a number of external cyber security firms during the games. However, these investments are dwarfed by the overall investment into the Games and its associated infrastructure, which has exceeded £7bn. The cyber threat has also prompted organizations such as Discovery Communications, the European broadcaster for the Games, to take out cyber insurance to cover in case of a cyber attack.
However, deploying cyber security measures across an event as large as the 2018 Winter Olympics is an exceedingly difficult task. Previous Olympics have shown that information sharing across the government, organizing committees, IOC, media companies, IT service delivery firms and other organizations is incredibly challenging, but at the same time crucial to security.
For example, both the 2012 London and 2016 Rio de Janeiro Olympics set up dedicated organizational structures to coordinate security work and facilitate information exchange, but it is still unclear whether the South Koreans have followed this practice.
It will also be the responsibility of individuals that are taking part in the games, either as spectators or participants, to ensure that they are not compromised. Simple measures such as switching off the WiFi and Bluetooth connections of devices when not in use, using a credit card to pay for online goods and services, updating the software of devices, and using strong PINs and passwords can all help.
The Olympic Games could invite the most severe cyber threats to a major sporting event in recent years. The location of the games and increased connectivity, both among the public and infrastructure, makes it a prime target for cyber attacks. For the IOC, successful cyber attacks could have severe consequences and bring harm to attendants, participants and sponsors to the Olympics. A precedent of impactful cyber incidents at one of the Olympic Games could also invite further adversary interest in future events, making it increasingly difficult to adequately secure the Olympics in the future.
More importantly for South Korea, one of the world’s most technologically advanced and digitally-connected countries, the 2018 Winter Olympics come at a time of heightened geo-political tensions. Therefore, the stakes are high. A successful cyber attack during the Olympics would result in immense reputational loss for a nation that prides itself on being at the forefront of technology.
South Korea has also taken several steps to stabilize relations with its northern neighbor during the Olympics, for example by having North and South Korean athletes competing together. An attack or incident involving North Korea could further destabilize relations and prompt a diplomatic crisis – particularly in light of recent North Korean nuclear tests. Having a cyber safe Olympics is therefore not only in the best interest of South Korea, but in the interest of us all.