Cyber Threats to Upcoming Super Bowl LIX

The upcoming Super Bowl LIX in New Orleans is a prime target for cyberattacks due to its massive audiences, extensive digital infrastructure, and the potential for high financial and reputational impact. Experts warn that organizers should be prepared for an onslaught of attacks leading up to and on game day, which is scheduled for February 9 this year.

Challenges in Securing Large-Scale Events

Securing such events can be particularly challenging due to the vast array of potential attack surfaces, including ticketing systems, livestreaming platforms, in-stadium Internet of Things (IoT) devices, and valuable fan data. The New Year’s Day terrorist attack in the city has only added to the concerns, highlighting the importance of monitoring sensitive information such as API keys, tokens, and access keys that are often poorly monitored or completely unmonitored.

Vulnerabilities in Networked Infrastructure

According to Tim Eades, CEO and co-founder of Anetac, large-scale events like the Super Bowl represent a perfect storm for Network Hardware Interface (NHI) vulnerabilities. The combination of reliance on automated systems, rapid deployment, and the expansive network of NHIs required to support modern stadiums has significantly increased the attack surface. Eades notes that bad actors recognize that automated accounts are gateways to critical infrastructure and sensitive data such as customer information, employee data, and more.

Threats to Event Organizers

Securing such accounts is crucial because they enable attackers to potentially gain control over stadium systems, from payment processing to manipulating environmental controls and emergency systems. Eades perceives the targeting of NHIs as presenting a threat for event organizers in New Orleans and remote locations, emphasizing the need for robust security measures to protect against these threats.