Monday , May 27 2024
Paris

Outpost24 report
Cybersecurity Loopholes in Paris 2024 Olympics Infrastructure

The 2024 Olympic Games in Paris are coming soon. A recent cybersecurity assessment by Outpost24, a provider of cyber threat exposure management solutions, has raised concerns about the online infrastructure of the games.

Outpost24 has identified critical vulnerabilities in the security posture, despite it being considered “mostly secure”. These vulnerabilities could be used by malicious actors. Here are the concerning findings:

Researcher claimed: Biometrics of Indian Forces Exposed

Jeremiah Fowler, a security researcher, claimed to discover a major vulnerability in India's data security. He found an unprotected database...
Read More
Researcher claimed: Biometrics of Indian Forces Exposed

NSA Releases Guidance on Zero Trust Maturity

The NSA released an information sheet called "Advancing Zero Trust Maturity Throughout the Application and Workload Pillar." This sheet will...
Read More
NSA Releases Guidance on Zero Trust Maturity

Data protection is sovereignty: Mohammad A. Arafat
INFOCOM Dhaka ends promoting cyber resiliency

The two day long 7th edition of INFOCOM, India's biggest business, technology, and leadership event, themed "Sustainable Disruption", concluded today...
Read More
Data protection is sovereignty: Mohammad A. Arafat  INFOCOM Dhaka ends promoting cyber resiliency

Phoenix Summit 2024
Two days phoenix summit ended successfully at Dhaka

TheTeamPhoenix, a non-profit organization, successfully hosted Phoenix Summit 2024, the largest cyber security event in Bangladesh, from May 23-24. This...
Read More
Phoenix Summit 2024  Two days phoenix summit ended successfully at Dhaka

CISA Added Apache Flink CVE-2020-17519 Vulnerability to KEV

CISA warns Apache Flink users about a critical vulnerability. Cybercriminals are exploiting this flaw to compromise systems. Apache Flink is...
Read More
CISA Added Apache Flink CVE-2020-17519 Vulnerability to KEV

Cisco released software updates for CVE 2024-20360

Cisco, a global network solutions leader, has reported a security issue with its Firepower Management Center (FMC) software. This vulnerability,...
Read More
Cisco released software updates for CVE 2024-20360

Ivanti Patches Critical RCE Flaws in Endpoint Manager

Ivanti on Tuesday declare to patch for several products, including fixes for critical vulnerabilities in Endpoint Manager (EPM). Ivanti resolved...
Read More
Ivanti Patches Critical RCE Flaws in Endpoint Manager

German police warn of cyberattacks via Office 365

ompanies in Germany are facing a new wave of cyberattacks. The State Criminal Police Office of North Rhine-Westphalia has issued...
Read More
German police warn of cyberattacks via Office 365

Hacktivists group target Philippines government ransomware attack

SentinelOne researchers found that the Ikaruz Red Team is targeting the Philippines government using different ransomware builders like LockBit, Vice...
Read More
Hacktivists group target Philippines government ransomware attack

CISA ALERT
CISA Warns Exploiting NextGen Healthcare Mirth Connect Flaw

The US cybersecurity agency, CISA, added a flaw in NextGen Healthcare's Mirth Connect product to its catalog of Known Exploited...
Read More
CISA ALERT  CISA Warns Exploiting NextGen Healthcare Mirth Connect Flaw
Source: Outpost24 blog

Open Ports:

Unsecured open ports can be exploited by hackers, leading to unauthorized access to important data and internal systems.

Source: Outpost24 blog

SSL Misconfigurations:

The report shows that 31 domains have bad SSL certificates, and 86 domains have no SSL certificates at all. These problems make the network vulnerable to attacks that can intercept communications and steal information. The report emphasizes the importance of better SSL certificate settings to prevent these attacks.

Cookie Consent Violations:

Websites associated with the Paris 2024 Olympics may not be obtaining proper user consent for cookie usage.

    Source: Outpost24 blog

Domain Squatting:

The presence of deceptive domains can trick users into scams or malware attacks.

Potential Dangers:

The Paris 2024 Olympics are at risk of cyberattacks that can cause data breaches, disrupt operations, and damage reputation. These attacks can compromise athlete information, ticketing details, and financial data, posing privacy and security risks. Important systems like scorekeeping, broadcasting, and access control could be targeted, causing chaos and disruption during the Games.

Source: Outpost24 blog

The report emphasizes the positive cybersecurity measures taken by the organizers of Paris 2024 but also emphasizes the need for careful monitoring of potential vulnerabilities.

“Even though we’d consider the Paris 2024 games as a ‘good’ example of how to manage an attack surface, it isn’t perfect (as perfection rarely exists with cybersecurity),” stated Outpost24’s EASM CSO, Stijn Vande Casteele.

The Paris 2024 Olympics are at risk of cybercrime due to increased online activity. Cybercriminals may try to exploit vulnerabilities to steal valuable information, similar to the 450 million cyberattacks during the 2020 Tokyo Olympics.

It is important to fix vulnerabilities and loopholes, patch open ports, correct SSL configurations, comply with cookie consent, and monitor suspicious domain activity to prevent cyberattacks.

(Media Disclaimer: This report is based on research conducted internally and externally using different ways. The information provided is for reference only, and users are responsible for relying on it. Infosecbulletin is not liable for the accuracy or consequences of using this information by any means)

Check Also

cisco

Cisco released software updates for CVE 2024-20360

Cisco, a global network solutions leader, has reported a security issue with its Firepower Management …

Leave a Reply

Your email address will not be published. Required fields are marked *