Beijing Olympics Health App Vulnerable To Security Flaws, Claim Researchers
By Alexa Heah, 19 Jan 2022
In just two weeks, the 2022 Winter Olympic games are set to take place in Beijing, China, though news has emerged that the Games’ health app might have a startling security flaw.
Researchers at The Citizen Lab at the University of Toronto’s Munk School of Global Affairs and Public Policy revealed that the app contained a “simple but devastating flaw” that allowed hackers to bypass its encryption safeguards.
“The worst-case scenario is that someone is intercepting all the traffic and recording all the passport details, all the medical details,” Jeffrey Knockel, a research associate, told CTV.
Attendees at the Games are required to use the app as part of COVID-19 safety measures, hence the need for medical information. According to Engadget, the app has other features such as messaging, updates about the Olympics, and logistics information.
At the moment, the International Olympic Committee (IOC) has said that it doesn’t believe the app has a security vulnerability, and has requested the researchers’ findings for further examination.
“The IOC has conducted independent third-party assessments on the application from two cyber-security testing organizations. These reports confirmed that there are no critical vulnerabilities,” it told Engadget.
As per ESPN, the IOC said it had informed the Beijing Organizing Committee of the security flaw last month, but had yet to receive a response.
The site noted that The Citizen Lab’s report comes as more countries are advising their athletes to refrain from bringing devices with sensitive information to China, adding yet another dimension to the already muddied waters.
[via Engadget and ESPN, cover image via Mirko Kuzmanovic | Dreamstime.com]