Cybercriminals Are Using Eurovision to Attack UK SMEs

Cybercriminals could exploit the Eurovision Song Contest to defraud UK businesses, experts are warning ahead of next week’s musical spectacular in Liverpool.

The North West Cyber Resilience Centre(NWCRC) has said that criminals will be "looking for any opportunity to take advantage of a situation and that the European song content provides an ideal opportunity to launch attacks on UK enterprises.

“We are asking all businesses across the North West, but particularly Merseyside, to be vigilant against potential cybercrime in the run-up to the Eurovision Song Contest in May,” said Dan Giannasi, Head of Cyber and Innovation at the NWCRC.

“Protecting your organisation is critical for businesses involved in the event but also the wider business community across the region.”

Phishing attacks via emails and messages and fake invoices are among the methods criminals could use ahead of the event to attack businesses in the UK and beyond.

The NWCRC also urged companies to stay wary of malware attacks, which it said could be used to take over company systems, which are severely under-protected in the region.

“Currently, we are hearing about an increased number of phishing scams, where fraudsters are trying to get personal information and take payment while impersonating businesses.”

“Small businesses, in particular, can be vulnerable as they often lack the in-house skills and knowledge to protect themselves effectively,” Giannasi said.

A region prone to cybercrime

The NWCRC’s warning comes after the Government’s Cyber Security Breaches Survey 2022 found that almost half of the small businesses in the Northwest had a cyber breach or attack in the previous 12 months.

What's worse is that only 28 per cent had carried out a risk assessment of cyber security risks following the breach.

Giannasi warned that businesses in the supply chain of hosting the European song contest may be working with new third-party suppliers, customers and enterprises, making it more difficult to spot fraudsters.

“We strongly advise businesses in the North West, and in particular businesses in the supply chain for the Eurovision Song Contest such as hotels, transport providers and any other suppliers, to update all of their software, ensure their firewalls and virus protection is up-to-date and switch on two-factor authentication wherever possible.”

The centre's founder and MD of Manchester Digital, Katie Gallagher, said: “Cybercrime is increasingly more sophisticated so it can be really hard to spot phishing or hacking attempts.

"Fraudsters will be relying on businesses dealing with unfamiliar suppliers and customers and looking for any opportunity to take advantage of a situation.”

#Don’tMissABeat

With the risk of cybercrime heightened in the run-up to Eurovision the Cheshire and Merseyside Integrated Care System (ICS) has created the #DontMissABeat campaign to help organisations manage and improve security ahead of the contest.

The aim of the campaign is to help health and care staff and those getting involved in Eurovision activities gain an understanding of the threat of cybercrime and the ways in which their actions can help or hinder these types of attacks. Enabling them to protect themselves, the organisations they work for, and the event itself.

In August last year, hackers infiltrated the UK’s National Health Service and used ransomware software LockBit 3.0 to attack Advanced, the company behind the Adastra patient management software used by the NHS, and force vital systems offline.

The outage affected over 5.5 million patients across Scotland, England and Wales, forcing doctors and medical staff to keep patient files on pieces of paper and email for months as systems remained offline until mid-October.

Speaking about the #DontMissABeat campaign, Matt Connor, Chair of the Cheshire and Merseyside Integrated Care System’s Cyber Security Group said that businesses must learn how to act in the face of heightened cyber risk.

“Cybercriminals often use popular events, such as Eurovision, to try to take advantage of their victims by tricking them into performing actions they can exploit, such as clicking on a malicious link or giving away confidential information.”

“Through launching the #DontMissABeat campaign we wanted to arm our health and social care staff in Cheshire and Merseyside as well as those who are taking part in Eurovision activities this year, with an awareness of four key cyber security practices they can follow to help protect themselves, and others around them, from falling foul of cybercriminals.”

OpenAI Takes Aim at Google Search With SearchGPT

Beyond the AI Hype: The Challenges AI Brings to the IT Industry

What is a Prompt Engineering? How to Make LLMs Better

What is a Stochastic Parrot? Understanding the Hidden Flaw in LLMs

Data Mastery: Driving Business Growth with MDM and AI Innovations

Breaking Barriers With Accessible Data Visualization

Teradata and The Very Group: Innovating with Analytics to Help Families Get More

Teradata and Brinker: AI and the Cloud Serve Up Sizzling Food

How a Labour Government Will Change UK Tech, According to Experts

Top 10 Best Public DNS Servers for 2024

What is Engagement Farming and is it Worth the Risk?

Meta to Dissolve 'Reality Labs' Division as Layoffs Loom

Top 10 ERP Software and Systems for 2024

Top 10 SD-WAN Providers to Consider in 2024

Top 10 Best DCIM Software Solutions for 2024

Opentelemetry: The Key to Unified Telemetry Data

Secureworks & IDC MarketScape: Worldwide MDR 2024 Vendor Assessment

Secureworks: 10 Security Controls to Reduce Risk

NHS Suffers Blood Shortage as Cyber Attack Disrupts Donations

Why the Cybersecurity Industry Needs Podcasts

1 TB of Disney Data Leaked in NullBulge Cyber Attack

Why did Yik Yak Fail? How the Messaging App Died

What Happened to AltaVista? The Rise and Fall of a Search Pioneer

What is an AI Skeleton Key? Microsoft Warns of New Vulnerability

OpenAI Takes Aim at Google Search With SearchGPT

NHS Suffers Blood Shortage as Cyber Attack Disrupts Donations

What is a Prompt Engineering? How to Make LLMs Better

What is a Stochastic Parrot? Understanding the Hidden Flaw in LLMs

Data Mastery: Driving Business Growth with MDM and AI Innovations

Beyond the AI Hype: The Challenges AI Brings to the IT Industry

Why the Cybersecurity Industry Needs Podcasts

Breaking Barriers With Accessible Data Visualization

Top 10 ERP Software and Systems for 2024

Top 10 MFA Providers and Software Tools for 2024

Top 10 Best Data Quality Tools for 2024

Top 10 SD-WAN Providers to Consider in 2024

Secureworks & IDC MarketScape: Worldwide MDR 2024 Vendor Assessment

Secureworks: 10 Security Controls to Reduce Risk

AuditBoard: Digital Risk Report 2024

AuditBoard: IT Risk and Compliance Platforms

Cybersecurity Luminary Stephen Khan to Receive Prestigious Hall of Fame Award at Infosecurity Europe

Leadership powerhouse Claire Williams OBE reveals how to navigate change and develop a strong team culture at Infosecurity Europe 2024

Digital Transformation Week Unveils Keynote Topics: Empowering Enterprises with Real-World Insights

Generative AI and Deepfake Expert, Henry Ajder to discuss the impact of generative AI on cybersecurity at Infosecurity Europe 2024

"Everyone's Talking About AI in Cybersecurity!" | TG Singham @ Infosecurity Europe

"You Need to Test that Your Backup Plan Actually Works!" | Kim Larsen @ Infosecurity Europe

"There's a Disparity Between Threat Actors and Security Teams" | Koryak Uzan @ Infosecurity Europe

"There's an Information Overload for Cybersecurity Teams!" | James Johnson @ Infosecurity Europe

A region prone to cybercrime

#Don’tMissABeat

More from Ellis Stewart

Ellis Stewart

Recommended for you

OpenAI Takes Aim at Google Search With SearchGPT