SecureList

NOVEMBER 14, 2022

From a different angle, reporting from The Intercept revealed mobile surveillance capabilities available to Iran for the purposes of domestic investigations that leverage direct access to (and cooperation of) local telecommunication companies. The first one, in January, was MoonBounce ; the other was CosmicStrand in July 2022.

Firmware 111

Firmware Surveillance Mobile Telecommunications 111

SecureList

NOVEMBER 14, 2023

In May, Ars Technica reported that BootGuard private keys had been stolen following a ransomware attack on Micro-Star International (MSI) in March this year (firmware on PCs with Intel chips and BootGuard enabled will only run if it is digitally signed using the appropriate keys).

Hacking 110

Hacking Energy and Utilities Media Malware 110

SecureList

FEBRUARY 16, 2021

After the attacks came to light, the manufacturer promptly released a firmware update for configuring verification of incoming requests. In October, telecommunications firm Telenor Norway was another to fall victim. Consequently, the victims received reply packets several times larger in size.

DDOS 134

DDOS Cryptocurrency Marketing Internet 134

SecureList

DECEMBER 14, 2022

According to the same article, another such attack took place in the late 1990s when the American military attacked a Serbian telecommunications network. It directly affected satellite modems firmwares , but was still to be understood as of mid-March. ViaSat quickly suspected that disruptions could be the result of a cyberattack.

DDOS 136

DDOS Ransomware Government Energy and Utilities 136

SecureList

MAY 10, 2021

Vulnerable devices were either misconfigured or missing the latest firmware version with the required settings. In addition to the aforementioned Melita, Austrian provider A1 Telekom (article in German), as well as Belgian telecommunications firm Scarlet , suffered DDoS attacks (albeit without the ransomware component).

DDOS 103

DDOS Cryptocurrency Media Marketing 103