Architecture, Information Security and Telecommunications

China-linked LightBasin group accessed calling records from telcos worldwide

Security Affairs

OCTOBER 20, 2021

A China-linked hacking group, tracked as LightBasin (aka UNC1945 ), hacked mobile telephone networks around the globe and used specialized tools to access calling records and text messages from telecommunications companies. CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by since 2019.

Telecommunications

Telecommunications Mobile Hacking Architecture

New GTPDOOR backdoor is designed to target telecom carrier networks

Security Affairs

MARCH 4, 2024

LightBasin targeted and compromised mobile telephone networks around the globe and used specialized tools to access calling records and text messages from telecommunications companies. CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by since 2019.

Telecommunications

Telecommunications Firewall Mobile Malware

Cuttlefish malware targets enterprise-grade SOHO routers

Security Affairs

MAY 1, 2024

The experts noticed that the infection chain was distinct, with 99% of infections originating in Turkey, primarily from two major telecommunications providers. The binary analyzed by the researchers is compiled for all major architectures used by SOHO operating systems. The recent campaign spanned from October 2023 to April 2024.

Malware

Malware DNS Authentication Telecommunications

ENISA publishes a Threat Landscape for 5G Networks

Security Affairs

NOVEMBER 21, 2019

ENISA, the European Union Agency for Cybersecurity publishes a Threat Landscape for 5G Networks, assessing the threats related to the fifth generation of mobile telecommunications networks (5G). Certification of 5G architecture components is a likely action depending on the exact designation of tools under the toolbox initiative carried out.

Architecture

Architecture Risk Telecommunications Advertising

US officials meet UK peers to remark the urgency to ban Huawei 5G tech

Security Affairs

JANUARY 13, 2020

officials responsible for national security and telecommunications were meeting their peers in Britain ahead of the final decision on Huawei 5G technology. officials responsible for national security and telecommunications were meeting their peers in Britain in the attempt to convince U.K. According to U.K.

Telecommunications

Telecommunications Government Advertising Architecture

Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco

Security Affairs

JULY 19, 2021

Below the list of info stolen by the threat actor and available for sale: – Project Specification:[ Electrical, Power System, Architectural, Chief Engineering, Civil, Construction Mgnt, Environmental, Instrument & Control, Interface Mgnt, Machinery – Rotating, Mechanical – Vessels, Piping, Project Engineering, Safety Engineering, Telecommunications (..)

Engineering

Engineering Telecommunications Wireless Data breaches

Aerial Direct, the O2’s largest UK partner suffered a data breach

Security Affairs

MARCH 16, 2020

Hackers have stolen O2 customers’ data from a database run by Aerial Direct , one of the largest UK partners of the telecommunications services provider. Aerial Direct reported the incident to the Information Commissioner’s Office. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches

Data breaches Telecommunications Passwords Advertising

Dutch intelligence investigate alleged Huawei ‘backdoor’

Security Affairs

MAY 19, 2019

Since 2018, US Government has invitedd its allies to exclude Huawei equipment from critical infrastructure and 5G architectures. “It is also known that the three major telecom parties are participating in the risk analysis of the vulnerability of 5G telecommunication networks.

Telecommunications

Telecommunications Government Mobile Advertising

Information risk and security for professional services

Notice Bored

APRIL 20, 2022

When you acquire or provide professional services, how do you address the associated information risks? I am currently drafting a guideline on information security, privacy, governance, compliance and other controls to mitigate unacceptable information risks in professional services.

Risk

Risk Energy and Utilities Computers and Electronics Telecommunications

DePriMon downloader uses a never seen installation technique

Security Affairs

NOVEMBER 21, 2019

The group is very sophisticated and used zero-day exploits and complex malware to conduct targeted attacks against governments and organizations in almost every industry, including financial, energy, telecommunications, and education, aerospace. The targets were all located in the Middle East, Europe, Asia, and Africa.

Malware

Malware Telecommunications Advertising Encryption

Meet the 2021 SC Awards judges

SC Magazine

MAY 1, 2021

Prior to Mastercard, Abdullah was the chief information security officer at Xerox, where she established and led a corporate-wide information risk management program. She also served as the deputy chief information officer of the White House. She is also the host of the Mastering Cyber podcast.

Computers and Electronics

Computers and Electronics Technology Education Information Security

Canadian intelligence agencies CSE and CSIS are divided on Huawei 5G ban

Security Affairs

NOVEMBER 14, 2019

In November 2018, The Wall Street Journal reported that the US Government urged its allies to exclude Huawei from critical infrastructure and 5G architectures. Canada, along with the US, the UK, New Zealand, and Australia formed the so-called Five Eyes intelligence-alliance.

Government

Government Telecommunications Wireless Security Intelligence

What Is Penetration Testing? Complete Guide & Steps

eSecurity Planet

MARCH 7, 2023

Gray box pentest In gray box tests, also known as translucent tests, the organization gives some information to the pentesters but does not provide full disclosure of the architecture. The information provided to pentesters is usually an employer’s access credentials or knowledge of internal networks or applications.

Penetration Testing

Penetration Testing Wireless Passwords Social Engineering

New ransomware trends in 2023

SecureList

MAY 11, 2023

Security researchers discovered an archive that contained test builds of the malware for a number of less common platforms, including macOS and FreeBSD, as well as for various non-standard processor architectures, such as MIPS and SPARC. As for the second trend, we saw that BlackCat adjusted their TTPs midway through the year.

Ransomware

Ransomware Malware Architecture Telecommunications

Operation Soft Cell – Multiple telco firms hacked by nation-state actor

Security Affairs

JUNE 25, 2019

Once compromised the networks of telecommunication companies, attackers can access to mobile phone users’ call data records. “Based on the data available to us, Operation Soft Cell has been active since at least 2012, though some evidence suggests even earlier activity by the threat actor against telecommunications providers.

Telecommunications

Telecommunications Hacking Mobile Advertising

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

The most common objective of such attacks is cyberespionage and disruption of major telecommunications companies’ work. The telecommunications sector: Are providers ready for 5G? If they manage to compromise a telecommunications company, they can then also compromise its customers for surveillance or sabotage purposes.

Banking

Banking Telecommunications Marketing Internet

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

Advances in the use of polymers revolutionized everything from food packaging to electronics, telecommunication and medicine. But how exactly will artificial intelligence help bridge the information security skills gap? They won with Mayhem, an assisted intelligence application security testing solution. It's testable.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

Best Risk Management Software for 2021

eSecurity Planet

NOVEMBER 5, 2021

It can audit file servers, database servers, Windows servers, Active Directory servers, SharePoint servers, and virtual machine (VM) architectures. CURA is a web-based software that manages enterprise risks, project risks, incidents, business continuity, compliance, and information security. Learn more about Netwrix.

Software

Software Risk Government Architecture

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

Advances in the use of polymers revolutionized everything from food packaging to electronics, telecommunication and medicine. But how exactly will artificial intelligence help bridge the information security skills gap? They won with Mayhem, an assisted intelligence application security testing solution. It's testable.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

ForAllSecure

OCTOBER 9, 2019

Advances in the use of polymers revolutionized everything from food packaging to electronics, telecommunication and medicine. But how exactly will artificial intelligence help bridge the information security skills gap? They won with Mayhem, an assisted intelligence application security testing solution. It's testable.

InfoSec

InfoSec Artificial Intelligence Computers and Electronics Software

Top Risk Management Software Vendors

eSecurity Planet

APRIL 2, 2021

It can audit file servers, database servers, Windows servers, Active Directory servers, SharePoint servers, virtual machine (VM) architectures more. CURA is a web-based software that manages enterprise risks, project risks, incidents, business continuity, compliance and information security. Finally, identify your budget.

Risk

Risk Software Artificial Intelligence Government

US Commerce Department delays Huawei ban for 90 Days

Security Affairs

MAY 20, 2019

. “The Temporary General License grants operators time to make other arrangements and (gives) the Department space to determine the appropriate long term measures for Americans and foreign telecommunications providers that currently rely on Huawei equipment for critical services,” said Secretary of Commerce Wilbur Ross.

Telecommunications

Telecommunications Mobile Advertising Architecture

Cyber Security Informer

China-linked LightBasin group accessed calling records from telcos worldwide

New GTPDOOR backdoor is designed to target telecom carrier networks

Trending Sources

Cuttlefish malware targets enterprise-grade SOHO routers

ENISA publishes a Threat Landscape for 5G Networks

US officials meet UK peers to remark the urgency to ban Huawei 5G tech

Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco

Aerial Direct, the O2’s largest UK partner suffered a data breach

Dutch intelligence investigate alleged Huawei ‘backdoor’

Information risk and security for professional services

DePriMon downloader uses a never seen installation technique

Meet the 2021 SC Awards judges

Canadian intelligence agencies CSE and CSIS are divided on Huawei 5G ban

What Is Penetration Testing? Complete Guide & Steps

New ransomware trends in 2023

Operation Soft Cell – Multiple telco firms hacked by nation-state actor

Group-IB presents its annual report on global threats to stability in cyberspace

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

Best Risk Management Software for 2021

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

Top Risk Management Software Vendors

US Commerce Department delays Huawei ban for 90 Days

Stay Connected