Event security remains an ever-growing concern. Public events have been the targets in the past, meaning security leaders have tightened event safety procedures. Large events, such the Super Bowl, often require additional security to keep entertainment, staff and guests safe throughout the event. However, large events can also become targets for phishing and other cyberattacks. As security leaders plan and enforce an event's physical safety measures, an event should prepare an equally thorough cybersecurity plan.
Rafal Los, Head of Services GTM at ExtraHop, shared his thoughts on stadium cybersecurity ahead of the Super Bowl:
What threats should security leaders watch out for during the Super Bowl?
“As with any big public events, hackers will exploit the event to try and drive users to click on or open malicious links or items. Phishing using Super Bowl themed content will likely be prevalent. Hackers count on people getting caught up in the hype of the sporting event to let their guard down and click on something that looks like it came from a friend or other trusted source, with some tie-in to the event. The inevitable goal is one of the same few — get you to divulge your credentials to something like Office 365 or your bank or install malware or ransomware on your computer.”
How can attendees and viewers protect themselves from threats?
“Always be vigilant, and especially during big events where you're emotionally involved and want to be part of the hype/group. Always be skeptical of something that comes into your inbox or texts, or even pops up on a web page. Skepticism and knowing attackers are constantly out to get you is key.”
What can event security professionals do to help reduce cyber risk around large sporting events like this?
“Event security professionals can cut down on this type of attack by ensuring they've monitored their brands carefully and are actively defending against typo-squatting attacks, and monitoring web traffic at their events (where possible) for malicious content and links.”