Search
Close this search box.

Cyber experts warn of ransomware risks during Tokyo Olympics

olympia-1535219

Cyber experts warn of ransomware risks during Tokyo Olympics

Should the Summer Games face a cyberattack, the losses would be significant.

The five-ring symbol of the Olympic Games in Tokyo, Japan.

It might be assumed that with the ban on physical spectators at the postponed 2020 Tokyo Olympics, the level of risk stemming from this global event — particularly the spread of COVID-19 — has diminished, but cyber experts warn of a different risk: cyber. Fears of telecom disruptions and ransomware attacks are founded, and the damage that could be caused has increased with the reliance on technology to broadcast the Games, which kicked off on July 23rd. Experts say insurers could face potentially massive losses based on the high-risk factors.

Organizers have said that they are prepared for the kind of cyberattack that temporarily paralyzed IT systems ahead of the official opening ceremonies of the 2018 Pyeongchang Winter Olympics in South Korea.

“I think Japan is prepared for what happened in South Korea in 2018, but the landscape for cyberattacks has shifted so they can only be prepared for what they’ve seen in the past but maybe not for the next iteration of it,” Robert Behny, senior director of cyber data and partnerships at Verisk, told PropertyCasualty360. He added that “The best preparation that they can do ensure they have a solid foundation — software patching and system backups.”

COVID-19 has forced the world to transition to a digital state faster than expected. Japanese officials have even said they are utilizing technology such as facial recognition systems to monitor volunteers. A cyberattack on a broadcast or streaming network used by the Olympics may spell disaster as attackers could have hacked the IT infrastructure over a year ago when it was originally planned to be used.

While Japan has shown that they have been busily working on cybersecurity defenses over the past several years, Bethany Vohlers, senior manager for cyber solutions at Verisk, said: “In a lot of ways, the actors are always one step ahead of where the rest of the industry is. And that’s coming from the fact that they are largely typically nation-state attacks that are heavily funded. It can be an act of war, but it’s really a tool. And so there’s always going to be this appetite in the cybercrime world…to try and disrupt these sorts of events.”

Although Japan is ranked as low-risk by insurance and risk management firms, giving it a stellar reputation as a safe place to visit, the nation cannot afford to become too complacent.

With spectators having to watch the Games virtually, it means purchasing tickets with banking information and logging in to a website account to print tickets and watch the Games. If there’s an attack on the Olympics, disruptions to the virtual supply chain could impact companies supporting the Olympic Games and even virtual spectators.

With the absence of in-person attendance, the event is going to be very reliant on technology to stream or to save content, Behny said.

“That high technology reliance means that you’re going to have third parties of the Olympics officiants and fourth parties supporting that type of technology to stream content and to save the content for later viewing,” he added.

Even at-home spectators face risks

The organizers of the Olympics aren’t the only ones who should be vigilant. Suppliers and spectators must take action to protect themselves and those they are connected to. In addition to malware, there’s also the possibility of ransomware attacks, so what can companies expect if they’re targeted?

“I think all the suppliers, if you’re not the Olympic committee who’s actually putting on the show, you’re probably a target for ransomware,” Behny said. He added that if a threat actor can take you down and make you pay as a ransom or extortion, they achieved their goal because their criminal organization gets paid. But for the Olympic organizing team, threat actors want to have a media blackout so the Games can’t be produced.”

Behny warns spectators to be cognizant of phishing emails, so, if they get emails, they need to know if it’s a legitimate email from the Olympics or one from a streaming provider that they actually trust and shouldn’t click links that they don’t trust because it could have malicious attachments. “It’s the typical…good hygiene, good citizen of email etiquette,” he said, adding, “Pay attention to what you’re opening. Pay attention to what you’re clicking. The malware that would come from that could be a myriad of things.”

“I think, generally, the interest will be around some forms of cybercrimes, said Vohlers. “So trying to steal banking credentials or PII. I know that there is an Emotet malware for a while in Japan as well, which has really made a resurgence not too long ago and that actually helps steal banking credentials when you log into accounts.” She added that scams around just general ticketing to try to get that banking information, fraudulent websites, payment card theft, as well as phishing attacks, are also possible.

“And I think the one other thing to mention is really the potential disruption that spectators might face around potential hacks with the supply chain again, so thinking about wifi networks being impacted, I believe even hotels, if they’re impacted, that would impact those who are attending the event,” she noted.

‘A business interruption element’

Attacks will not just impact the top of the Olympic Games because other systems are attached to them, so even if an attack is just targeted at the Olympics, it could still spread everywhere else because the networks are connected. Ransomware tries to spread like a worm, and its spreads very quickly, so systems that are connected could be impacted even if it was not the intent of the threat actor.

Vohlers said what we need to be looking at is disruption — “sort of just a business interruption element.” She added that when it comes to ransomware, extortion has been increasing and becoming more targeted attacks and certainly in high-profile events like the Olympics. “The desire to recover from an attack might be greater than going through the whole remediation process,” she said.

There is a lot of money at stake. Should the Olympics be attacked, the losses would be great. The insurance industry is a stakeholder in major events like the Olympics and could encounter huge losses, considering that claims and liability could be impacted. A Reuters report revealed that the International Olympic Committee (IOC) typically takes out around $800 million of coverage for each Summer Olympics.

Leave a Reply

Your email address will not be published. Required fields are marked *

Related posts

Risk Management

Mitigating Financial Losses During Hurricane Season: A Skyscraper Insurance Guide

As hurricane season approaches, businesses must take proactive steps to safeguard against financial losses. At Skyscraper Insurance, we understand the unique challenges companies face in times of disaster, and we’re committed to helping our clients navigate them successfully. Here’s how your business can mitigate financial risks with the right strategies and support. 1. Diversifying Income Streams for Resilience A diversified revenue model is crucial to withstanding the disruptions caused by hurricanes. Skyscraper Insurance works with businesses to evaluate new opportunities—whether it’s launching an online platform, expanding services, or entering new markets. This ensures that if one revenue stream is impacted, others can sustain the business. 2. Comprehensive Insurance Coverage The first line of defense is making sure your insurance policies are up to date and cover potential hurricane-related damages. Skyscraper Insurance specializes in providing tailored insurance solutions, including business interruption coverage, property damage, and flood insurance, to protect our clients against catastrophic financial losses. 3. Creating a Contingency Plan with Experts In partnership with Skyscraper Insurance, businesses can develop disaster contingency plans that ensure operations continue smoothly, even in the face of supply chain delays or power outages. We help you establish backup solutions, such as alternate suppliers or inventory management systems, minimizing financial fallout. 4. Maintaining a Recovery Fund Skyscraper Insurance advises its clients to maintain a recovery fund, ensuring fast access to resources for repairs, inventory restocking, and other unforeseen costs. This proactive approach enables businesses to get back on their feet quickly without waiting for loans or insurance claims to process. 5. Leveraging Government Aid and Local Resources In the aftermath of a hurricane, government aid can be crucial for businesses. We assist our clients in navigating grants, low-interest loans, and tax breaks available through local and federal disaster relief programs, ensuring that financial recovery is swift. 6. Risk Management Strategies At Skyscraper Insurance, we provide businesses with customized risk management strategies designed to reduce vulnerabilities and protect financial stability. From evaluating potential hazards to implementing risk-transfer solutions, we help you mitigate loss before a disaster strikes. 7. Ensuring Proper Documentation for Claims Keeping detailed financial records is essential for filing accurate and timely insurance claims. We help clients organize and maintain critical documents that streamline the claims process, ensuring a quicker recovery period. Skyscraper Insurance: Your Partner in Resilience While hurricanes can be unpredictable, your business doesn’t have to face them alone. At Skyscraper Insurance, our commitment goes beyond coverage; we provide expert guidance and comprehensive risk management services that empower businesses to stay strong and resilient during hurricane season.

Read More
Safety Tips

How Natural Disasters Impact Supply Chains: Lessons from Hurricanes

Natural disasters like hurricanes wreak havoc on supply chains, causing major disruptions that can affect business operations for weeks or even months. For businesses, it’s critical to understand how these disruptions occur and to take steps to mitigate them. At Skyscraper Insurance, we help our clients navigate these challenges with smart risk management strategies that protect their bottom line. Here’s how hurricanes impact supply chains and what businesses can do to prepare. The Impact of Hurricanes on Supply Chains Hurricanes affect supply chains in several key ways: Minimizing the Impact: Strategies for Business Resilience While hurricanes are unpredictable, businesses can minimize their impact on supply chains through proactive planning: Inventory and Distribution Strategies Hurricanes often lead to localized supply shortages in the regions directly affected, but businesses that rely on global supply chains must also be wary of broader impacts. Global markets can feel the ripple effects as businesses look for alternative suppliers or routes, which might drive up costs and delay deliveries. Supporting Employees and Customers Beyond the logistical impact, hurricanes also bring safety risks to employees and customers. Ensure that safety plans are in place, including clear evacuation procedures and communication strategies. For employees working in distribution or warehouses, it’s essential to prioritize their well-being by closing operations in unsafe conditions and providing post-storm recovery support. Final Thoughts Supply chains are the backbone of many businesses, but they are also vulnerable to the unpredictable forces of nature. By diversifying suppliers, investing in technology, and planning ahead, businesses can minimize the disruption caused by hurricanes and other natural disasters. At Skyscraper Insurance, we’re here to help our clients protect their supply chains and navigate the challenges posed by these extreme events.

Read More
Try your instant quote