Architecture, Hacking and Telecommunications

Nation-State Attacker of Telecommunications Networks

Schneier on Security

OCTOBER 22, 2021

Someone has been hacking telecommunications networks around the world: LightBasin (aka UNC1945) is an activity cluster that has been consistently targeting the telecommunications sector at a global scale since at least 2016, leveraging custom tools and an in-depth knowledge of telecommunications network architectures.

Telecommunications

Telecommunications Architecture Mobile Hacking

China-linked LightBasin group accessed calling records from telcos worldwide

Security Affairs

OCTOBER 20, 2021

China-linked cyberespionage group LightBasin hacked mobile telephone networks around the world and used specialized tools to access calling records. CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by since 2019. ” reads the report published by Crowdstrike.

Telecommunications

Telecommunications Mobile Hacking Architecture

New GTPDOOR backdoor is designed to target telecom carrier networks

Security Affairs

MARCH 4, 2024

LightBasin targeted and compromised mobile telephone networks around the globe and used specialized tools to access calling records and text messages from telecommunications companies. CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by since 2019.

Telecommunications

Telecommunications Firewall Mobile Malware

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Cuttlefish malware targets enterprise-grade SOHO routers

Security Affairs

MAY 1, 2024

The experts noticed that the infection chain was distinct, with 99% of infections originating in Turkey, primarily from two major telecommunications providers. The binary analyzed by the researchers is compiled for all major architectures used by SOHO operating systems. The recent campaign spanned from October 2023 to April 2024.

Malware

Malware DNS Authentication Telecommunications

Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco

Security Affairs

JULY 19, 2021

Threat actors that goes online with the moniker ZeroX claim to have stolen 1 TB of sensitive data from the Saudi Arabian petroleum and natural gas giant end it is offering for sale it on multiple hacking forums. SecurityAffairs – hacking, Saudi Aramco). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Engineering

Engineering Telecommunications Wireless Data breaches

US officials meet UK peers to remark the urgency to ban Huawei 5G tech

Security Affairs

JANUARY 13, 2020

officials responsible for national security and telecommunications were meeting their peers in Britain ahead of the final decision on Huawei 5G technology. officials responsible for national security and telecommunications were meeting their peers in Britain in the attempt to convince U.K. Bronze President, hacking).

Telecommunications

Telecommunications Government Advertising Architecture

New Bill prohibits intelligence sharing with countries using Huawei 5G equipment

Security Affairs

JANUARY 12, 2020

Since November 2018, the US Government has invited its allies to exclude Chinese equipment from critical infrastructure and 5G architectures over security concerns. The US regulators consider the Chinese equipment in US telecommunications networks a threat to homeland security.

Telecommunications

Telecommunications Advertising Architecture Government

Orange Business Services hit by Nefilim ransomware operators

Security Affairs

JULY 17, 2020

is a French multinational telecommunications corporation founded in 1988. “The leaked documents related to ATR seem to include multiple aircraft architecture designs, email conversations, transfer of responsibility documents, and much more.” SecurityAffairs – hacking, Nefilim ransomware). Orange S.A.

Business Services

Business Services Ransomware Mobile Telecommunications

Aerial Direct, the O2’s largest UK partner suffered a data breach

Security Affairs

MARCH 16, 2020

Hackers have stolen O2 customers’ data from a database run by Aerial Direct , one of the largest UK partners of the telecommunications services provider. The company provides IP telephony services and equipment, including mobile, fixed lines, as well as call, broadband, conferencing and hosting telecoms.

Data breaches

Data breaches Telecommunications Passwords Advertising

Could this 'Unhackable' Chip Be a Security Moonshot?

SecureWorld News

APRIL 8, 2021

Undefined semantics are nooks and crannies of the computing architecture—for example the location, format, and content of program code. Defense Advanced Research Projects Agency (DARPA) hosted a competition to see if the MORPHEUS chip could be hacked. The unhackable chip bug bounty competition.

CISO

CISO Encryption Engineering Telecommunications

DePriMon downloader uses a never seen installation technique

Security Affairs

NOVEMBER 21, 2019

According to a report published by Symantec in 2017, Longhorn is a North American hacking group that has been active since at least 2011. “ DePriMon is an unusually advanced downloader whose developers have put extra effort into setting up the architecture and crafting the critical components,” ESET concludes.

Malware

Malware Telecommunications Advertising Encryption

Spotlight on Cybersecurity Leaders: Glenn Kapetansky

SecureWorld News

JUNE 2, 2022

For more than 20 years, Glenn has advised senior executives and built teams throughout the delivery cycle: strategy, architecture, development, quality assurance, deployment, operational support, financials, and project planning. Answer: The day at my dotcom when Korea hacked one of our three web servers. Answer: Energized.

Cybersecurity

Cybersecurity CSO Telecommunications Technology

China's 'Volt Typhoon' Targeting U.S. Infrastructure, Microsoft Warns

SecureWorld News

MAY 25, 2023

It's able to steal credentials and makes a strong effort to remain undetected, which is exactly how you would conduct a hack if you were gathering intelligence about the configuration of an IT network. In many respects, Volt Typhoon reminds me of another Chinese cyber espionage effort, Mustang Panda.

Firewall

Firewall Cyber threats Telecommunications Internet

Operation Soft Cell – Multiple telco firms hacked by nation-state actor

Security Affairs

JUNE 25, 2019

Once compromised the networks of telecommunication companies, attackers can access to mobile phone users’ call data records. “Based on the data available to us, Operation Soft Cell has been active since at least 2012, though some evidence suggests even earlier activity by the threat actor against telecommunications providers.

Telecommunications

Telecommunications Hacking Mobile Advertising

New ransomware trends in 2023

SecureList

MAY 11, 2023

Security researchers discovered an archive that contained test builds of the malware for a number of less common platforms, including macOS and FreeBSD, as well as for various non-standard processor architectures, such as MIPS and SPARC. As for the second trend, we saw that BlackCat adjusted their TTPs midway through the year.

Ransomware

Ransomware Malware Architecture Telecommunications

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

One of the trends related to the active confrontation between attackers has been hacking back, i.e. when attackers become the victims of hacking. The past months have shown that the most dangerous hacks involved DNS hijacking, which helped attackers manipulate DNS records for MITM attacks. SecurityAffairs – cybercrime, hacking).

Banking

Banking Telecommunications Marketing Internet

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

Advances in the use of polymers revolutionized everything from food packaging to electronics, telecommunication and medicine. One of the unique things about how they did this is they judged it in a full spectrum hacking contest. If you look at like the Tesla hack, it was interesting. This is another chunk. It's testable.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

Advances in the use of polymers revolutionized everything from food packaging to electronics, telecommunication and medicine. One of the unique things about how they did this is they judged it in a full spectrum hacking contest. If you look at like the Tesla hack, it was interesting. This is another chunk. It's testable.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

ForAllSecure

OCTOBER 9, 2019

Advances in the use of polymers revolutionized everything from food packaging to electronics, telecommunication and medicine. One of the unique things about how they did this is they judged it in a full spectrum hacking contest. If you look at like the Tesla hack, it was interesting. This is another chunk. It's testable.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

A guide to OWASP’s secure coding

CyberSecurity Insiders

SEPTEMBER 21, 2021

According to the Software Engineering Institute, software architecture or coding flaws are responsible for up to 90% of security problems. Although web applications and their accompanying architecture are the primary emphases, most recommendations apply to any software deployment environment. Input validation.

Authentication

Authentication Passwords Software Accountability

NightDragon’s Dave DeWalt: ‘This is the highest threat environment we’ve ever had, bar none’

SC Magazine

MARCH 2, 2021

Named after a Chinese hacking operation and headed by veteran cybersecurity industry executive Dave DeWalt, the company is comprised of a group of investors that raise capital through an initial public offering specifically for the purpose of acquiring an existing, unknown company. You were previously CEO of FireEye and McAfee.

Marketing

Marketing Media Digital transformation Cybersecurity

Iranian Threat Actors: Preliminary Analysis

Security Affairs

JANUARY 15, 2020

The group’s victims are mainly in the telecommunications, government (IT services), and oil sectors.” The usage of Mimikatz could be easily adopted for credential dumping, while TinyZBot is a quite interesting tool since it mostly implements spying capabilities without strong architectural design or code execution or data exfiltration.

Computers and Electronics

Computers and Electronics Penetration Testing Malware Government

In wake of giant software hacks, application security tactics due for an overhaul

SC Magazine

MARCH 29, 2021

Allan Friedman, director of cybersecurity initiatives at the National Telecommunications and Information Administration, has spent years working with other stakeholders on a framework for a software bill of materials that could introduce more transparency into the software world. Now it’s up to us all as a society to do it.”.

Software

Software Hacking Government Cyber Insurance

Key Cybersecurity Trends for 2024: My Predictions

Jane Frankland

DECEMBER 7, 2023

Additionally, expect to see more disclosures to regulators from hacking groups, like the one by ALPHV/BlackCat to the SEC in November 2023. AI and automation will play a vital role in managing the complexity of zero trust architectures, enabling real-time incident response through AI-powered analytics and machine learning.

Cybersecurity

Cybersecurity Cyber threats Insurance Artificial Intelligence

Advanced threat predictions for 2024

SecureList

NOVEMBER 14, 2023

Mail servers become priority targets In June, Recorded Future warned that BlueDelta (aka Sofacy, APT28, Fancy Bear and Sednit) exploited vulnerabilities in Roundcube Webmail to hack multiple organizations including government institutions and military entities involved in aviation infrastructure. Drone hacking!

Hacking

Hacking Energy and Utilities Media Malware

Cyber Security Informer

Nation-State Attacker of Telecommunications Networks

China-linked LightBasin group accessed calling records from telcos worldwide

Webinars

Trending Sources

New GTPDOOR backdoor is designed to target telecom carrier networks

Webinars

Cuttlefish malware targets enterprise-grade SOHO routers

Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco

US officials meet UK peers to remark the urgency to ban Huawei 5G tech

New Bill prohibits intelligence sharing with countries using Huawei 5G equipment

Orange Business Services hit by Nefilim ransomware operators

Aerial Direct, the O2’s largest UK partner suffered a data breach

Could this 'Unhackable' Chip Be a Security Moonshot?

DePriMon downloader uses a never seen installation technique

Spotlight on Cybersecurity Leaders: Glenn Kapetansky

China's 'Volt Typhoon' Targeting U.S. Infrastructure, Microsoft Warns

Operation Soft Cell – Multiple telco firms hacked by nation-state actor

New ransomware trends in 2023

Group-IB presents its annual report on global threats to stability in cyberspace

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

A guide to OWASP’s secure coding

NightDragon’s Dave DeWalt: ‘This is the highest threat environment we’ve ever had, bar none’

Iranian Threat Actors: Preliminary Analysis

In wake of giant software hacks, application security tactics due for an overhaul

Key Cybersecurity Trends for 2024: My Predictions

Advanced threat predictions for 2024

Stay Connected