A government official told Kyodo News on Wednesday that login IDs and passwords for the Tokyo Olympic ticket portal had been posted to a leak website following a breach.
The official said the leak was “not large” but admitted that the IDs and passwords would give someone access to a person’s name, address, bank account information and more.
Speaking anonymously, the government source said the body organizing the Games has launched an investigation. The leak also included names, addresses and bank account information of people who bought tickets to the Paralympics as well as another portal for volunteers. They did not say how many accounts had been leaked.
The news came one day after the FBI released a private industry alert urging organizations working with the Tokyo 2020 Summer Olympics to prepare for a wave of DDoS attacks, ransomware, social engineering, phishing campaigns, or insider threats to block or disrupt live broadcasts of the event, steal and possibly hack and leak or hold hostage sensitive data, or impact public or private digital infrastructure supporting the Olympics.
Malicious activity could disrupt multiple functions, including media broadcasting environments, hospitality, transit, ticketing, or security, the FBI notice said on Tuesday. The FBI to date is not aware of any specific cyber threat against these Olympics, but encourages partners to remain vigilant and maintain best practices in their network and digital environments.
The notice goes on to reference the Pyeongchang cyberattack that took place during the last Olympics in February 2018, where Russian hackers deployed the OlympicDestroyer malware and damaged web servers during the opening ceremony.
The hackers obfuscated the true source of the malware by emulating code used by a North Korean group, creating the potential for misattribution, according to the notice. In October, the Justice Department indicted six Russian intelligence operatives for the attack on the Pyeongchang Games.