Wednesday , June 25 2025
Paris

Outpost24 report
Cybersecurity Loopholes in Paris 2024 Olympics Infrastructure

The 2024 Olympic Games in Paris are coming soon. A recent cybersecurity assessment by Outpost24, a provider of cyber threat exposure management solutions, has raised concerns about the online infrastructure of the games.

Outpost24 has identified critical vulnerabilities in the security posture, despite it being considered “mostly secure”. These vulnerabilities could be used by malicious actors. Here are the concerning findings:

WhatsApp banned on all US House of Representatives devices

The U.S. House of Representatives has banned congressional staff from using WhatsApp on government devices due to security concerns, as...
Read More
WhatsApp banned on all US House of Representatives devices

Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store

Kaspersky found a new mobile malware dubbed SparkKitty in Google Play and Apple App Store apps, targeting Android and iOS....
Read More
Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store

OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems

OWASP has released its AI Testing Guide, a framework to help organizations find and fix vulnerabilities specific to AI systems....
Read More
OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems

Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform

In a major milestone for the country’s digital infrastructure, Axentec PLC has officially launched Axentec Cloud, Bangladesh’s first Tier-4 cloud...
Read More
Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform

Hackers Bypass Gmail MFA With App-Specific Password Reuse

A hacking group reportedly linked to Russian government has been discovered using a new phishing method that bypasses two-factor authentication...
Read More
Hackers Bypass Gmail MFA With App-Specific Password Reuse

Russia detects first SuperCard malware attacks via NFC

Russian cybersecurity experts discovered the first local data theft attacks using a modified version of legitimate near field communication (NFC)...
Read More
Russia detects first SuperCard malware attacks via NFC

Income Property Investments exposes 170,000+ Individuals record

Cybersecurity researcher Jeremiah Fowler discovered an unsecured database with 170,360 records belonging to a real estate company. It contained personal...
Read More
Income Property Investments exposes 170,000+ Individuals record

ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs

GreyNoise found attempts to exploit CVE-2023-28771, a vulnerability in Zyxel's IKE affecting UDP port 500. The attack centers around CVE-2023-28771,...
Read More
ALERT (CVE: 2023-28771)  Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs

CISA Flags Active Exploits in Apple iOS and TP-Link Routers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently included two high-risk vulnerabilities in its Known Exploited Vulnerabilities (KEV)...
Read More
CISA Flags Active Exploits in Apple iOS and TP-Link Routers

10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online

SafetyDetectives’ Cybersecurity Team discovered a public post on a clear web forum in which a threat actor claimed to have...
Read More
10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online
Source: Outpost24 blog

Open Ports:

Unsecured open ports can be exploited by hackers, leading to unauthorized access to important data and internal systems.

Source: Outpost24 blog

SSL Misconfigurations:

The report shows that 31 domains have bad SSL certificates, and 86 domains have no SSL certificates at all. These problems make the network vulnerable to attacks that can intercept communications and steal information. The report emphasizes the importance of better SSL certificate settings to prevent these attacks.

Cookie Consent Violations:

Websites associated with the Paris 2024 Olympics may not be obtaining proper user consent for cookie usage.

    Source: Outpost24 blog

Domain Squatting:

The presence of deceptive domains can trick users into scams or malware attacks.

Potential Dangers:

The Paris 2024 Olympics are at risk of cyberattacks that can cause data breaches, disrupt operations, and damage reputation. These attacks can compromise athlete information, ticketing details, and financial data, posing privacy and security risks. Important systems like scorekeeping, broadcasting, and access control could be targeted, causing chaos and disruption during the Games.

Source: Outpost24 blog

The report emphasizes the positive cybersecurity measures taken by the organizers of Paris 2024 but also emphasizes the need for careful monitoring of potential vulnerabilities.

“Even though we’d consider the Paris 2024 games as a ‘good’ example of how to manage an attack surface, it isn’t perfect (as perfection rarely exists with cybersecurity),” stated Outpost24’s EASM CSO, Stijn Vande Casteele.

The Paris 2024 Olympics are at risk of cybercrime due to increased online activity. Cybercriminals may try to exploit vulnerabilities to steal valuable information, similar to the 450 million cyberattacks during the 2020 Tokyo Olympics.

It is important to fix vulnerabilities and loopholes, patch open ports, correct SSL configurations, comply with cookie consent, and monitor suspicious domain activity to prevent cyberattacks.

(Media Disclaimer: This report is based on research conducted internally and externally using different ways. The information provided is for reference only, and users are responsible for relying on it. Infosecbulletin is not liable for the accuracy or consequences of using this information by any means)

Check Also

Paraguay 7.4 Million Citizen Records Leaked on Dark Web

Resecurity found 7.4 million records of Paraguayan citizens’ personal information leaked on the dark web …

Leave a Reply

Your email address will not be published. Required fields are marked *