The Rise of Generative AI Threats: Implications for NFL Security as the New Season Begins

Generative AI and Deepfake Threats in the NFL

The Growing Concern

The National Football League (NFL) is gearing up for the start of the 2023 season, and as the league’s Chief Information Security Officer (CISO), Tomás Maldonado is acutely aware of the evolving threats faced by the NFL’s data, systems, and networks. With the increasing digitization of various operations within the NFL, such as ticketing systems and stadium infrastructure, new attack surfaces have emerged, making cybersecurity a top priority for Maldonado and his team.

One specific concern that has emerged is the use of generative AI tools, such as ChatGPT, which have made it easier than ever for attackers to create deepfake videos and audios. Maldonado believes that while deepfakes have already targeted political figures, the world of sports and entertainment, specifically the NFL, is ripe for exploitation. The popularity and high-profile nature of NFL players and personalities make them attractive targets for deepfake attacks. These attacks could not only damage the reputation of the individuals involved but also impact the league as a whole.

The Threat of AI-Enabled Phishing

In addition to deepfakes, Maldonado is also concerned about the rise of AI-enabled phishing attacks. Generative AI tools allow threat actors to create convincing phishing emails that are much more sophisticated than traditional spam emails. These emails can trick even the most vigilant users into divulging sensitive information or clicking on malicious links.

To combat this threat, Maldonado and his team have prioritized awareness training for players, coaches, and staff. They educate them about the importance of protecting their identity information and social media accounts with two-factor authentication. By staying ahead of the evolving tactics of attackers, Maldonado hopes to minimize the risk of successful phishing attacks.

The Importance of Security Preparedness

Maldonado is well aware of the potential consequences of a cybersecurity breach in the NFL. The San Francisco 49ers experienced a ransomware attack on Super Bowl Sunday in 2022, and the Winter Olympics in Pyeongchang were disrupted by the Olympic Destroyer group, allegedly linked to North Korea. Maldonado understands that a single security incident during a major event like the Super Bowl or the draft could have far-reaching effects on the league’s brand and the overall fan experience.

To ensure the security of the NFL, Maldonado’s team works closely with counterparts at each of the NFL’s 32 teams. They collaborate on security program development and provide risk assessments based on the league’s 10-point security framework. By fostering a culture of security and sharing best practices, the NFL aims to maintain a unified front against cyber threats.

Cisco’s Role in Securing the NFL

Cisco, as an official technology partner of the NFL, plays a vital role in securing the league’s infrastructure. Backed by its Talos threat intelligence service, Cisco supports the NFL in maintaining a robust digital backbone and delivering effective security services. Cisco’s Senior Vice President and General Manager of the security business group, Tom Gillis, emphasizes that securing the NFL’s network is no different from securing any other enterprise organization in today’s threat landscape.

Gillis acknowledges the different types of attacks that the NFL faces, from direct, forceful attacks to social engineering scams powered by AI tools. Cisco’s role is to protect against these various threats by detecting and preventing them from infiltrating the network. By leveraging their expertise in network security, Cisco helps safeguard the operations of the NFL and preserve the integrity of the league.

Risk-Based Approach and Collaboration

IT leaders at NFL teams, such as Brandon Covert of the Cleveland Browns, recognize the importance of implementing robust security measures. Covert is responsible for protecting player health data, personal information, and fan data, as well as ensuring physical security for fans in a digitized stadium environment.

To adopt a risk-based approach to cybersecurity, the Browns recently partnered with Binary Defense, a managed detection and response service provider. Binary Defense will enable the Browns to establish a stronger security posture by proactively monitoring threats, both cyber and physical. By keeping a close eye on Dark Web chatter related to high-profile individuals within the organization, Binary Defense will provide timely alerts and help protect against potential attacks.

Covert underscores the collaborative nature of cybersecurity in the NFL. While teams may compete on the field, when it comes to cybersecurity, they work together as a united front. By sharing knowledge, implementing the NFL’s security framework, and partnering with trusted vendors, NFL teams can enhance their defensive capabilities and mitigate the risks they face in the digital realm.

Conclusion

As the NFL enters the 2023 season, the threat landscape has become increasingly complex. Generative AI-enabled phishing attacks and deepfake videos pose significant risks to the league’s operations, its brand, and the overall fan experience. However, by staying vigilant, engaging in proactive training, and leveraging partnerships with organizations like Cisco and Binary Defense, the NFL aims to maintain a strong defense against cyber threats.

For NFL fans, players, coaches, and staff, it is crucial to remain aware of the evolving tactics used by threat actors. Implementing security best practices, such as two-factor authentication and regular security awareness training, can help protect personal information and mitigate the risk of falling victim to phishing attacks.

In an era where internet security threats continue to evolve, it is clear that safeguarding the integrity of professional sports leagues like the NFL requires a comprehensive and collaborative approach. By prioritizing cybersecurity and working together as a team, the NFL aims to maintain an undefeated record in the realm of internet security.