Vulnerabilities Found in Beijing Olympics App

Cybersecurity group Citizen Lab disclosed that My2022 , the Beijing Winter Olympics app that all Games attendees must use has several security risks and vulnerabilities.

“MY2022, an app mandated for use by all attendees of the 2022 Olympic Games in Beijing, has a simple but devastating flaw where encryption protecting users’ voice audio and file transfers can be trivially sidestepped,” said Citizen Lab. 

Citizen Lab added that customs forms containing personal data are vulnerable and that there is a built-in censor filter while server responses can also be spoofed.

Citizen Lab added that My2022 did not validate digital security, or SSL, certificates of forwarding sites, and that data transmission had no SSL protection or encryption.

“The worst-case scenario is that someone is intercepting all the traffic and recording all the passport details, all the medical details,” warned Citizen Labe researcher Jeffrey Knockel.

Knockel advised Beijing Winter Olympics attendees to take caution when using the app and to find more secure connections when using it.


© Fourth Estate® — All Rights Reserved.
This material may not be published, broadcast, rewritten or redistributed.