Sophos: Don’t get hacked off at the Olympic Games
August 2008 by Sophos
IT security and control firm Sophos is warning the tens of thousands of athletes, coaches, journalists and tourists travelling to Beijing for the 2008 Olympic Games to be on their guard against cybercriminals when using their notebooks, PDAs and smartphones. Sophos published research last month which revealed that almost a third of all infected webpages in the world were hosted in China in the first six months.
Experts at Sophos are highlighting the need for visitors to the Games not to forget their usual security measures in their haste to access the web from Wi-Fi hotspots, internet cafés and hotels.
Cybercriminals including hackers, spammers and phishers are known to take advantage of major events, whether they be political, environmental or sporting, taking advantage of the excitement and tricking unsuspecting computer users into accidentally clicking links in spam messages, visiting bogus web pages, and inadvertently downloading malware.
With the web now being hackers’ preferred vector of attack and with China now hosting the second largest proportion of infected webpages in the world, the risks are even higher for the average computer user wanting to connect to web. This problem is compounded in China, as many security companies find it more difficult to monitor Chinese sites when compared to other countries, and even when infected sites are identified, finding the appropriate contact and communicating the problem can prove challenging.
"Desperate to read the latest news from the Games and send reports back home, sports fans might fall at the first hurdle, giving hackers the advantage," said Carole Theriault, senior security consultant at Sophos. "Of course hackers will do their best to capitalise on this event - the most effective way to avoid the pitfalls is to make your device an unattractive target. We’ve published top ten tips to remind users to not throw caution to the wind. After all, the last thing any visitor wants is to find their bank account emptied while they are enjoying the Games abroad."
Sophos’s top tips to stay safe on the web at the Olympics:
1. Turn off administrative rights when accessing the internet - a hacker will get a lot further with an administrator’s password and username.
2. Before you send email or surf the web, check that your anti-virus software is fully up-to-date. Just because you are out of the country doesn’t make you a more difficult target for hackers.
3. Ensure all security patches for your browser, operating system, and other applications are downloaded and installed as soon as they are made available.
4. Have an active personal firewall to help block unauthorised access to your computer.
5. Do not leave your laptop or mobile phone unattended. Old fashioned theft in events like these is still a serious problem.
6. Make sure your VPN connection is secure when sending emails or downloading data.
7. All confidential data should be encrypted, whether it is stored on notebooks, mobile phones or USB stick. Should your computer or data fall into the wrong hands, it will be blocked from prying eyes.
8. Only use your own USB sticks or external storage devices - hackers have been known to plant malware on these items in the past.
9. Turn on your wireless functions such as WLAN and Bluetooth only when you need them, and make sure to turn them off when you have finished sending mail to looking for web content.
10. Make sure your anti-virus software is kept up-to-date at all times. Just because you’re out of your country, doesn’t mean you’re out of reach of the hackers.