Deepfakes and cyber-attacks: How the Paris 2024 Olympics became a hotspot for digital warfare

This year’s Olympics, held in Paris, France, were a magnet for cybersecurity threats at an unprecedented scale. French authorities reported over 140 cyber-attacks during the event, underscoring the increasingly complex threat landscape.

As the most connected Games in history, the Paris 2024 Olympics — with its advanced digital technology and network infrastructure — were a prime target for cyber-attacks.

The digital threats against the Olympics were symbolic of global threat patterns ranging from cyber-warfare to developments in AI technologies.

In response, organisations must keep up to date with these threats and ensure their cybersecurity defences are ready to protect against them.

AI Deepfakes: A new tool for cyber-attackers

AI has played a significant role in cybersecurity, offering advanced capabilities for detecting and responding to cyber threats. However, its dual use means that hackers can leverage the same technology to develop more sophisticated attacks.

In 2023 alone, AI-enhanced ransomware attacks grew by 30%, targeting high-value organisations. Meanwhile, AI tools contributed to a 25% improvement in identifying vulnerabilities.

While AI is a valuable asset in combating cyber threats, it also heightens risks, emphasising the need for organisations to continually adapt and enhance their cybersecurity strategy.

At the 2024 Olympic Games, the use of AI deepfakes, including image, video, and audio simulations, were utilised in “influence campaigns” to disrupt the events.

This deepfake content spread false claims about game outcomes and used manipulated audio to damage the reputation of coaches, athletes, teams, and officials with false, inflammatory statements.

Further to this, fabricated images and videos were employed to discredit competitors and potentially bar them from participation.

In the context of political and social divisions alongside geopolitical tensions, the use of such deepfakes contributed to increased international inflammation.

Russia-Ukraine War and hacktivist groups at the Olympics

The Russia-Ukraine War has significantly impacted hacktivist and threat actor group activity.

Given France’s alignment with Ukraine in the Russia-Ukraine war, this has led to Russian-affiliated threat actor groups such as Storm-1679 spearheading online campaigns spreading fake news and artificial intelligence-aided videos about the Olympics on social media.

Last year, a documentary entitled “Olympics Have Fallen”, narrated by a voice with a striking similarity to the actor Tom Cruise, sharply criticised the leadership of the International Olympic Committee and was quickly amplified across multiple social media and streaming channels.

Orange’s future is ‘collaborative and iterative not generational’ says CITO

This year-long campaign to discredit the Olympics highlights the new heights of psychological warfare, as well as blurs the lines between fiction and reality, ultimately undermining the spirit of the games.

According to a recent report, Russian threat actors created a fake video news release from the CIA and France’s main intelligence agency warning potential attendees to stay away from the 2024 Olympics due to an alleged terrorist attack.

This disinformation campaign highlights Russia’s ongoing influence campaigns to denigrate the reputation of the Games, as well as create the expectation of violence breaking out.

Proactive cybersecurity strategies for global events

Organisational officials must conduct comprehensive audits of their systems to help them identify and address weaknesses in IT systems and infrastructure that could be exploited by cyberattacks.

This proactive approach reduces the risk of successful breaches or disruptions during the games.

Similarly, training staff is essential to educate them about common cybersecurity threats and vulnerabilities, helping them recognise potential threats and equip them with the skills needed to quickly manage cybersecurity incidents.

It is critical to ensure secure communications at major events like the Olympics for secure communications, protecting against data theft, and ensuring consistent security across various locations.

If possible, it is best practice to avoid public Wi-Fi and encrypt internet traffic when on public networks. By adding an extra layer of security, organisers can better safeguard critical systems and data, ensuring the integrity and smooth operation of the event.

Benefits and risks: AI’s dual role in cybersecurity

While AI has revolutionised the landscape of cybersecurity by providing advanced tools for threat detection and response, it also presents significant challenges.

The use of AI in developing sophisticated cyber-attacks, such as deepfake campaigns, underscores the dual use of the technology.

The incidents surrounding the Paris 2024 Olympics Games highlight the potential of AI-driven disinformation in causing widespread disruption, inciting conflicts, and further complicating the cybersecurity landscape.

To stay ahead of such attacks, organisations must keep up to date with global events, ensuring that they are protected against threat actors operating across their supply chain with a proactive approach.

Find out about some of the tech used at the Paris 2024 Olympics by watching our exclusive interview with Orange’s Bertrang Rojat, in charge of connectivity at the games, below.